Prisma Cloud Application Vulnerability Search : Deployed tab vs CI tab

cancel
Showing results for 
Show  only  | Search instead for 
Did you mean: 
Announcements
Please sign in to see details of an important advisory in our Customer Advisories area.

Prisma Cloud Application Vulnerability Search : Deployed tab vs CI tab

L0 Member

Not sure if this has been asked before but I am fairly new to checking Prisma vulnerabilities -- I want to resolve High/Critical ones on our APIs but I get confused when checking CI tab and Deployed tab from Compute>Monitor>Vulnerabilities section. CI tab would have that API to contain lots of vulnerabilities (6 Critical, 3 high, 4 medium, around 30 low) but when checking Deployed tab, it only shows around 10 (5 Critical and 4 high only).

 

Which is the accurate tab to check on? In addition, shouldn't both tabs have the same count of entries if they're under the same API image?

 

 

 

1 REPLY 1

L1 Bithead

The deployed tab represent the container images scanned by the defender. These container images could be running on a standalone host or in

 

Please refer below techdoc for more details: 

 

Deployed images Scan:

https://docs.prismacloud.io/en/compute-edition/30/admin-guide/vulnerability-management/scan-reports

CI Scan

https://docs.prismacloud.io/en/compute-edition/32/admin-guide/tools/twistcli-scan-images

  • 527 Views
  • 1 replies
  • 0 Likes
Like what you see?

Show your appreciation!

Click Like if a post is helpful to you or if you just want to show your support.

Click Accept as Solution to acknowledge that the answer to your question has been provided.

The button appears next to the replies on topics you’ve started. The member who gave the solution and all future visitors to this topic will appreciate it!

These simple actions take just seconds of your time, but go a long way in showing appreciation for community members and the LIVEcommunity as a whole!

The LIVEcommunity thanks you for your participation!