QVM – Newly configured vulnerability exceptions can sometimes be duplicated

It has been identified that when creating new vulnerability
exceptions, a duplicate can sometimes be created.

Example of steps that can sometimes reproduce this issue:

  1. Click on the Vulnerabilities tab.
  2. Click Manage Vulnerabilities > By Vulnerability.
  3. Select (single click) a vulnerability which is affecting multiple assets and exception on all assets (Actions drop down, Exception, Exception vulnerability for all assets check box, set expiry dates/comments, click Save button).
  4. Select another vulnerability which is on multiple assets and exception on a specific asset (Click the Vulnerability Instances for a vulnerability, click an asset, click Actions drop down, click Exception, set expiry dates/comments, click Save button).
  5. Click on Vulnerability Exceptions on the left menu. The vulnerability exceptioned against all assets can sometimes be duplicated.

APAR IJ02090 – follow the link to register for updates:

https://www-01.ibm.com/support/entdocview.wss?uid=swg1IJ02090

RTC 151112