> ## Documentation Index
> Fetch the complete documentation index at: https://docs.snapsec.co/llms.txt
> Use this file to discover all available pages before exploring further.

# Vulnerabilities

> View, manage, and remediate all vulnerabilities across assessments from a unified interface.

## Overview

<Frame caption="Centralized vulnerability list with filters and status overview">
  <img src="https://mintcdn.com/snapsec-23724fa2/w1fpWJGrA04r8o_0/images/vm/vulnerability.png?fit=max&auto=format&n=w1fpWJGrA04r8o_0&q=85&s=a9ac91a69b2a85a97a8513ca8321701a" width="1813" height="857" data-path="images/vm/vulnerability.png" />
</Frame>

The **Vulnerabilities** section provides a unified view of all identified security issues across assessments, assets, and teams.

It allows you to track, prioritize, and manage vulnerabilities from discovery to resolution — all in one place.

<Callout icon="shield-check" color="green">
  Every vulnerability is tracked with full context — including severity, ownership, activity, and evidence — ensuring complete visibility across the remediation lifecycle.
</Callout>

***

## What You Can Do

* **View All Vulnerabilities**
  * Access a centralized list across all assessments

* **Track Status**
  * Monitor states like *In Review, Re-test, Fixed in Staging, Resolved*

* **Assign Ownership**
  * Clearly see who is responsible for remediation

* **Prioritize Fixes**
  * Focus on critical issues using severity and SLA indicators

***

## Filtering and Search

<Frame caption="Filtering toolbar for refining vulnerabilities">
  <img src="https://mintcdn.com/snapsec-23724fa2/8g9pftPx_MC1OhN8/images/vm/vulnerability-2.png?fit=max&auto=format&n=8g9pftPx_MC1OhN8&q=85&s=f0323c6092af4e49e27f1abc0aab80d6" width="1676" height="850" data-path="images/vm/vulnerability-2.png" />
</Frame>

Use filters to quickly find relevant vulnerabilities:

* **Severity**
* **Assessments**
* **Owners**
* **State**
* **Business Unit / Departments**
* **SLA Status**

<Callout icon="search" color="blue">
  Combine filters to narrow results — for example, *High severity vulnerabilities in Re-test assigned to Backend Team*.
</Callout>

***

## Vulnerability States

Each vulnerability moves through defined states:

* **In Review**
* **Triaged**
* **Re-test**
* **Fixed in Staging**
* **Resolved**
* **Risk Accepted**
* **False Positive / Not Applicable**

<Callout icon="chain" color="green">
  State changes are reflected instantly across dashboards and reports.
</Callout>

***

## Creating a Vulnerability

<Frame caption="Create a new vulnerability manually">
  <img src="https://mintcdn.com/snapsec-23724fa2/w1fpWJGrA04r8o_0/images/vm/vul-create.png?fit=max&auto=format&n=w1fpWJGrA04r8o_0&q=85&s=0fcacd493194778e2f3c5f860af75d69" width="1820" height="243" data-path="images/vm/vul-create.png" />
</Frame>

* Click **Create Vulnerability**
* Add details like title, severity, and affected asset
* Link it to an assessment

<Callout icon="plus" color="purple">
  Manual creation is useful for adding findings from external tools or internal reviews.
</Callout>

***

## Vulnerability Details

Clicking a vulnerability opens a **single unified view** containing all information needed for remediation.

<Frame caption="Vulnerability description with steps, impact, and remediation">
  <img src="https://mintcdn.com/snapsec-23724fa2/w1fpWJGrA04r8o_0/images/vm/vul-inside.png?fit=max&auto=format&n=w1fpWJGrA04r8o_0&q=85&s=97e3d860e648d90bd40d31db3261ab0f" width="1451" height="770" data-path="images/vm/vul-inside.png" />
</Frame>

***

### Description & Reproduction

This section includes:

* **Title & Description**
* **Steps to Reproduce**
* **Impact**
* **Remediation Guidance**

It serves as the **primary reference** for developers fixing the issue.

***

### Activity & Collaboration

<Frame caption="Comments, blockers, and activity timeline">
  <img src="https://mintcdn.com/snapsec-23724fa2/w1fpWJGrA04r8o_0/images/vm/vul-inside-2.png?fit=max&auto=format&n=w1fpWJGrA04r8o_0&q=85&s=754367074eefb3265432a436560ffe03" width="1812" height="668" data-path="images/vm/vul-inside-2.png" />
</Frame>

* Add comments and tag team members
* Track all updates and system changes
* Create blockers if remediation is blocked

<Callout icon="message" color="blue">
  All communication stays tied to the vulnerability — ensuring full traceability.
</Callout>

***

### Report Details Panel

<Frame caption="Metadata panel with severity, ownership, and SLA status">
  <img src="https://mintcdn.com/snapsec-23724fa2/w1fpWJGrA04r8o_0/images/vm/vu-report-details.png?fit=max&auto=format&n=w1fpWJGrA04r8o_0&q=85&s=bc98bcecf423879702ceb205d3512feb" width="383" height="775" data-path="images/vm/vu-report-details.png" />
</Frame>

Key information includes:

* **Severity & CVSS**
* **Owner & Collaborators**
* **Current State**
* **Assessment Source**
* **Affected Asset**
* **CWE Classification**
* **SLA Status**
* **Reported Date**

<Callout icon="gauge" color="yellow">
  Use this panel to quickly assess risk and decide remediation priority.
</Callout>

***

### Attachments & Revalidation

Within the same view:

* Upload screenshots, logs, and PoCs
* Track revalidation details
* Maintain proof for audits

<Callout icon="paperclip" color="purple">
  Evidence ensures vulnerabilities are verifiable, reproducible, and audit-ready.
</Callout>

***

## Why It Matters

The Vulnerabilities section centralizes everything required to manage security issues effectively.

It ensures:

* Clear understanding of each issue
* Structured collaboration between teams
* Complete audit trail with activity and evidence
* End-to-end tracking from discovery to resolution

***

## Explore Live Demo

<Card title="Explore VM Live — No Signup Needed" icon="wand-magic-sparkles" href="https://suite.snapsec.co/demo">
  Experience how Snapsec helps teams track and remediate vulnerabilities in a unified workflow.
</Card>
