Skip to main content

Edit scan vulnerability severity

Contrast classifies scan vulnerabilities based on the likelihood and impact of a vulnerability in the code, from most to least severe:

  • Critical

  • High

  • Medium

  • Low

  • Notes

You have the option to change the severity that Contrast applies automatically to a vulnerability. Future scans do not override a severity change.

Before you begin

  • If you are using role-based access control, a role with the View, edit, and delete project action is required.

  • If you are using organization users and groups, the Organization Admin role is required.

Steps

  1. In the header, select Scans.

  2. Select a scan project.

  3. Select the Vulnerabilities tab.

  4. Select the colored badge in the Severity column and choose a new level from the menu.

    1. If more than one vulnerability of the same type exists, you have the option of changing the severity for the selected vulnerability only or the severity of all matching vulnerabilities.

    2. Optionally, add a reason for the change in the Comment box.

    3. Select Change severity.

In this section: