The Suppressions feature in CYRISMA allows users to manage items that are either excluded on specific hosts (Local Suppressions) or across all hosts within the instance (Global Suppressions). The interface is organized into two tabs:

1. Vulnerability: Displays suppressed vulnerabilities such as CVEs, open ports, or regulatory compliance requirements.
2. Secure Baseline: Displays suppressed benchmarks that are part of a secure configuration baseline.

Tabs Overview

Vulnerability Tab

This tab lists items that have been suppressed, categorized into:

• CVE Numbers: Known vulnerabilities identified by their CVE identifiers.
• Open Ports: Suppressed open ports detected during scans.
• Regulatory Compliance: Suppressions related to specific compliance requirements.

Each suppression entry includes the following details:

• CVE Number or Item Title (e.g., Open Ports or Compliance category).
• Host Name: Indicates the specific host affected (Local Suppressions) or applies to all hosts (Global Suppressions).
• Created By: The user who initiated the suppression.
• Created Date: The timestamp of when the suppression was added.
• Expiration Date: Suppressions have an expiration date to ensure regular review.
• Actions: Options to manage or modify the suppression.

Secure Baseline Tab

This tab focuses on secure configuration benchmarks that are suppressed.

Key Details Displayed:

• Title: The specific configuration or benchmark being suppressed.
• Section: The policy category (e.g., Credential User Interface).
• Host Name: Indicates whether the suppression is local or global.
• Created By/Date: Tracks who created the suppression and when.
• Expiration Date: Marks the suppression’s review date.

Local vs. Global Suppressions

• Local Suppressions: Specific to a single host and listed under the "Local Suppressions" section.
• Global Suppressions: Apply to all hosts across the instance and listed under the "Global Suppressions" section.