I would like to know we are patching and running schedule scan's on our environments and form that we fix any vulnerabilities extracted and found. However, we now have another vulnerability tool, "Skybox", which has multiple vulnerabilities compared to Qualys.
Why is there a difference between Qualys and Skybox interpretations? I assume, Qualys send all the necessary data to Skybox, But still we are seeing lots of vulnerabilities compared to what we have seen in our Qualys.
For example 1 Asset=63+ critical vulnerabilities in skybox!