Issues

An issue is an AI security problem that needs to be addressed (for example, "Agent contains sensitive information and open to the web" or "Agent contains a risky tool"). The Issues page in Tenable AI Exposure highlights the violations found within your organization's usage of AI applications. Here, you can view information about how critical these violations are and which users are creating the most issues, ultimately enabling you to mitigate the risks these users pose quickly and effectively. Then, you can drill-down even further by clicking on any issue in the issues list to view individual Issue Details.

To access the Issues page:

1. In the left navigation menu, click Issues.

   The Issues page appears. By default, the Issues tab is selected.

   

2. (Optional) In the upper-right corner of the page, from the drop-down menu, select a time frame by which you want to filter all data on the Issues page.

   

   The data on the page updates automatically based on your selection.

The Issues page includes the following sections:

Open/Resolved Issues

The Open Issues and Resolved Issues section indicates the number of open and resolved issues within your Tenable AI Exposure container.

• The Open Issues section shows the total number of open issues, as well as the number of issues that fall under each color coded severity category.

  Tip: Click on a severity to filter the Issues List by the selected severity.

• The Resolved Issues section shows the percentage of issues that have been resolved, as well as the total number of resolved issues as compared to the total number of open issues.

Top Risky Users

The Top Risky Users section highlights the Tenable AI Exposure users in your container that are responsible for the highest number of issues.

Here, you can view the following information about these users:

• The user's name.

• The number of issues for which the user is responsible.

• Color coded severity categories that indicate how critical the open issue is, for example, Critical or Medium.

  Tip: For more information about these severity categories, see User Risk.

Issues List

At the bottom of the page, you can view a list of all open issues within your Tenable AI Exposure container.

Here, you can:

• Use the search bar to search for a specific issue in the list.

• Filter the list:

  1. Above the list, use one or more of the following filters to adjust the data displayed in the list:

     • Severity

     • Category

     • Subcategory

     • Users

     • Apps

     • Status

     • Type

     Tenable AI Exposure updates the list based on your selection.

  2. Click Clear Filters to clear any filters applied to the list.

• Export the list:

  1. In the upper-right corner, click Export to CSV.

     Tenable AI Exposure exports the list in CSV format and saves it to your local downloads folder.

• Manage the columns in the list:

  1. In the upper-right corner, click the button.

     A menu appears.

  2. Select or deselect columns to show or hide them within the list.

• Resolve one or more issues in the list:

  1. In the list, select the check box next to each issue you want to resolve.

     The Resolve Selected button appears at the bottom of the page.

  2. Do one of the following:

     • To resolve the issue(s) as a true positive, click Resolve Selected.

     • To resolve the issue(s) another way, click the button.

       A menu appears.

       

       1. Select one of the following options:

          • Resolve as Benign Positive — Mark the issue(s) as expected behavior that appears suspicious, but is actually benign.

          • Resolve as False Positive — Mark the issue(s) as alerts that were triggered incorrectly, and are not an actual risk.

     A confirmation dialog appears.

  3. (Optional) In the Add a reason text box, type a brief description of why you're resolving the issue.

  4. Click Save.

• Click on an issue within the list to navigate directly to the Issue Details for that issue.

• View the following information about your issues:

  • Severity — The color coded severity category that indicates how critical the open issue is, for example, Critical or Medium.

  • Issue — The name of the issue.

  • Alerts — The number of alerts that have been sent as a result of this issue.

  • Subcategory — The subcategory to which the issue belongs, for example Email, Access Key, or Hardcoded credentials.

    Tip: For more information, see Tenable AI Exposure Policies and Detection Rules.

  • Apps — Icons indicating the AI application(s) on which the issue was found.

    Tip: Hover over an icon to view the full name of the application.

  • Status — The status actions you can take on the issue:

    1. Click the Resolve button.

       A menu appears.

       

    2. Select one of the following options:

       • Resolve as True Positive — Mark the issue as a legitimate violation that has been resolved.

       • Resolve as Benign Positive — Mark the issue as expected behavior that appears suspicious, but is actually benign.

       • Resolve as False Positive — Mark the issue as an alert that was triggered incorrectly, and is not an actual risk.

       The status updates to Resolved.

       

  • First event — The date and time at which the issue was first seen.

  • Last event — The date and time at which the issue last alerted.