US 11,706,245 B2
System and method for solution resolution for vulnerabilities identified by third-party vulnerability scanners
Brian James Waplington, San Diego, CA (US); Hemendra Rana, Saratoga, CA (US); and Naveen Reddy Bojja, San Diego, CA (US)
Assigned to ServiceNow, Inc., Santa Clara, CA (US)
Filed by ServiceNow, Inc., Santa Clara, CA (US)
Filed on Jul. 28, 2022, as Appl. No. 17/815,770.
Application 17/815,770 is a continuation of application No. 16/813,348, filed on Mar. 9, 2020, granted, now 11,489,861.
Claims priority of provisional application 62/935,571, filed on Nov. 14, 2019.
Prior Publication US 2022/0368715 A1, Nov. 17, 2022
Int. Cl. H04L 9/40 (2022.01); G06F 16/22 (2019.01); G06N 5/04 (2023.01); G06N 20/00 (2019.01); G06F 16/23 (2019.01)
CPC H04L 63/1433 (2013.01) [G06F 16/2282 (2019.01); G06F 16/2379 (2019.01); G06N 5/04 (2013.01); G06N 20/00 (2019.01)] 20 Claims
OG exemplary drawing
 
1. A vulnerability-solution resolution (VSR) system, comprising:
at least one memory comprising a vulnerabilities table configured to store vulnerabilities detected on a client network, a solutions table configured to store solutions to address the vulnerabilities, and a links table configured to store links that associate the vulnerabilities of the vulnerabilities table with the solutions of the solutions table; and
at least one processor configured to execute stored instructions to perform actions comprising:
determining a recommended solution for a vulnerability stored in the vulnerabilities table by:
determining, from the links table, a set of non-excluded links associated with the vulnerability in the vulnerabilities table and respectively associated with a set of solutions in the solutions table;
determining a solution supersedence chain of the set of solutions; and
selecting the recommended solution as a highest supersedence solution from the solution supersedence chain.