We are attempting to create a search in AssetView to identify hosts with confirmed Sev5 vulnerabilities. Based on available documentation, we thought the following would work:
(vulnerabilities.vulnerability.types:"VULNERABILITY" and vulnerabilities.vulnerability.severity:"5")
Results from this search include hosts that have potential Sev5 vulnerabilities, and NO confirmed Sev5 vulnerabilities. Curious why the only available types for this search field only includes VULNERABILITY, POTENTIAL, or INFORMATION... but not CONFIRMED.