Remediation Tickets

Qualys provides fully secure audit trails that track vulnerability status for all detected
vulnerabilities. As follow up audits occur, vulnerability status levels - new, active, fixed,
and re-opened - are updated automatically and identified in trend reports, giving users
access to the most up-to-date security status. Using Remediation Workflow, Qualys
automatically updates vulnerability status in remediation tickets, triggering ticket
updates and closure in cases where vulnerabilities are verified as fixed.

Ticket information includes:

        Resolved refers to tickets marked as resolved by users.

        Closed/Fixed refers to tickets with vulnerabilities verified as fixed by the service.

Closed/Ignored refers to tickets ignored by users or the service (based on a user policy).

Also, users can ignore vulnerabilities on hosts. If tickets exist for vulnerabilities set to ignore      status, the service sets them to Closed/Ignored, and if tickets do not exist for these issues the service adds new tickets and changes them to Closed/Ignored.

You can manually create a remediation ticket for any vulnerability instance, from a scan report or from the host information view.

Use the following APIs to manage remediation tickets.

List Tickets

Edit Tickets

Delete Tickets

List Deleted Tickets

Get Ticket Info

Ignore Vulnerabilities