This document covers how to:
- Identify the vulnerabilities with the highest risk in your infrastructure
- Understand the risk vulnerabilities
- Surface tasks from your security team in your daily workflow so it's easy to deliver more secure infrastructure
If this workflow doesn't sound like you, check out our document on managing vulnerabilities as a security team.
Maintain the vulnerability health of your infrastructure
Once vulnerability data starts flowing into New Relic, you can access your data through various scoped views.
To monitor the health of specific applications or services, navigate to one.newrelic.com > All capabilities > Infrastructure > (select an entity) > Security > Summary and use the entity scoped view. For a larger scope, refer to our document on managing vulnerabilities as a security team.
one.newrelic.com > All capabilities > Infrastructure > (select an entity) > Security > Summary
The Security summary page for an entity gives you a high-level overview of the security of your application or service. Curated dashboards provide you an overall view of the security of your application or service, including:
- Total vulnerabilities
- Package vulnerabilities
- Misconfigurations
- Vulnerability exposure window
- Top five vulnerabilities in accordance with the priority rankings
- Vulnerability breakdown by type
- Package severity breakdown
- Top package upgrades
To monitor the health of your infrastructure, use the entity scoped view by navigating to one.newrelic.com > All capabilities > Infrastructure > (select an entity) > Security> Summary. For a larger scope, see our document on managing vulnerabilities as a security team.
Supported OS distributions and package managers
Security RX supports following Linux OS distributions:
Debian
Ubuntu
Amazon Linux, 
CentOS, 
RHEL & Oracle Linux
SLES
Security RX supports following package managers:
- RPM
- DPKG
Triage, prioritize, and remediate vulnerabilities
To view all vulnerabilities open for your infrastructure, in the left navigation pane, under Security section, select the Vulnerabilities.:
This page shows you all open vulnerabilities and allows you to filter them by attributes such as severity and source. Clicking on a specific vulnerability provides detailed information about its severity, sources, vulnerability status change logs, and many more.