How to Suppress and Globally Suppress Vulnerabilities in CYRISMA
This article details how to manage and suppress vulnerabilities within the CYRISMA platform, providing clear instructions for both Vulnerability Management and Secure Baseline modules. Suppression helps refine reporting by temporarily hiding vulnerabilities, ensuring more focused vulnerability management.
Written by Liam Downward
Updated at March 17th, 2025
- User Manual
- Agents
- The Cyber Risk Assessment Process
- API Documents
- General Questions and Troubleshooting
- The Cyber Risk Assessment Process (Video Tutorials)
- Sales and Prospecting Articles
- CYRISMA Partner Portal Access
- Glossary
- CYRISMA Change Log
- Support Ticket SLA
- Onboarding Framework
- PSA Integrations
- Billing Questions
- Self Onboarding Guide
Table of Contents
Suppressing a CVE for a Specific Machine:
Log in to the CYRISMA dashboard.
Navigate to Vulnerability Scan and select Scan History.
Select the machine containing the CVE to suppress.
In the vulnerability list, find the CVE and click the three-dot (•••) menu.
Select Suppress.
This suppresses the CVE for the selected machine only.
Provide a Justification for suppression (optional).
Click Confirm or Save to apply.
Globally Suppressing a CVE Across All Machines
To suppress a CVE globally across all machines within an instance:
From Vulnerability Management, navigate to Scan History.
Select any machine where the CVE appears.
Find the CVE in question, click the three-dot (•••) menu, and select Globally Suppress.
Provide a justification (optional).
Click Confirm or Save.
Note:
Suppression durations are set by default (typically 30 or 90 days). After the suppression period expires, the CVE reappears for review. This period is configurable under Admin → System Config → Suppression Days.
