topic Changing Severity Alerts for Specific Vulnerability Severity in Advanced Threat Prevention Discussions https://live.paloaltonetworks.com/t5/advanced-threat-prevention/changing-severity-alerts-for-specific-vulnerability-severity/m-p/240027#M464 <P>One of the logging capabilities allows us to provide an email for certain severity alerts.&nbsp; We are getting innodated with alerts coming in from the baddies on the internet for certain types of alerts.&nbsp; For instance, there is the&nbsp;"Netis/Netcore Router Default Credential Remote Code Execution Vulnerability(39587)" and that is a high severity.&nbsp; Since we do not use any of this equipment, this would be something we don't need to be notified about but still want to block.&nbsp; We block all High/Critical seveirty, we don't want to stop blocking it but we do want to stop getting emails about this and others alike.&nbsp; Is there a way for us to either change the action/alerting of a specific vulnerability?</P> Thu, 15 Nov 2018 17:56:58 GMT Chris_Julio 2018-11-15T17:56:58Z Changing Severity Alerts for Specific Vulnerability Severity https://live.paloaltonetworks.com/t5/advanced-threat-prevention/changing-severity-alerts-for-specific-vulnerability-severity/m-p/240027#M464 <P>One of the logging capabilities allows us to provide an email for certain severity alerts.&nbsp; We are getting innodated with alerts coming in from the baddies on the internet for certain types of alerts.&nbsp; For instance, there is the&nbsp;"Netis/Netcore Router Default Credential Remote Code Execution Vulnerability(39587)" and that is a high severity.&nbsp; Since we do not use any of this equipment, this would be something we don't need to be notified about but still want to block.&nbsp; We block all High/Critical seveirty, we don't want to stop blocking it but we do want to stop getting emails about this and others alike.&nbsp; Is there a way for us to either change the action/alerting of a specific vulnerability?</P> Thu, 15 Nov 2018 17:56:58 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/changing-severity-alerts-for-specific-vulnerability-severity/m-p/240027#M464 Chris_Julio 2018-11-15T17:56:58Z Re: Changing Severity Alerts for Specific Vulnerability Severity https://live.paloaltonetworks.com/t5/advanced-threat-prevention/changing-severity-alerts-for-specific-vulnerability-severity/m-p/240059#M465 <P>Hello,</P><P>You can use a filter with the negate option to filter out that traffic.</P><P>&nbsp;</P><P><A href="https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000Cln1CAC" target="_blank">https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA10g000000Cln1CAC</A></P><P>&nbsp;</P><P>Cheers!</P> Thu, 15 Nov 2018 20:57:21 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/changing-severity-alerts-for-specific-vulnerability-severity/m-p/240059#M465 OtakarKlier 2018-11-15T20:57:21Z