Manage results

  • Latest Dynatrace
  • How-to guide

In the following, you'll learn how to manage results on the Vulnerabilities Vulnerabilities app pages. You can

  • Filter: Select which information to display
  • Format: Select which columns to display
  • Sort: Select the order in which to display results

Filter vulnerabilities

See below how you can filter vulnerabilities and affected entities.

Timeframe filter

With the timeframe, you can define the period from which your data is being queried. If you don't specify the timeframe, the default Last 30 minutes is applied, meaning that the data being fetched is from the last 30 minutes.

When setting the timeframe, the end value must always be Now.

  1. On the Prioritization page, go to the timeframe section.
  2. Select one of the preset options or select the calendar for customization.
  3. Select Apply.

timeframe filter

Segment selector

Segments provide quick access to predefined logical filters. The segment selector allows you to filter results based on these predefined logical filters. You can apply segments to any Vulnerabilities page.

See below for instructions.

If you already have segments defined, you can skip this step.

Open the Segments Segments app and create segments for your environment. For more information, see Include data in Dynatrace segments.

Make sure to use filter segments that are compatible with entity state events. For examples of such filters, see Examples of how to create segments.

  1. On the Prioritization page, open the Settings menu in the upper-right corner.
  2. Enable Filter segments support. This adds the segment selector to all Vulnerabilities pages.
  1. Open the segment selector .
  2. In Filter by segments, select a segment.
  3. optional To add more segments, select Segments; if available, you can select a value for the selected segment.
  4. When you're happy with the selection, select Apply.

segment filter

Selecting one or multiple segments results in

  • Fewer vulnerabilities and affected entities
  • Scoping the vulnerabilities' Davis Security Score based on your selection

For example,

  • Before selecting a segment: There are 15 vulnerabilities with a 9.4 Davis Security Score on the Prioritization page.
  • After selecting a segment: There are five vulnerabilities with a 8.0 Davis Security Score, because the DSS has been scoped to include less entities and the maximum DSS score of affected entities is 8.0.

For more information on segments and how they work, see

Examples of how to create segments

You can create segments based on applications, services, hosts, and other relevant components monitored by Dynatrace. Here are some examples.

  1. Create a new segment.

  2. Create a new variable and add the following query to it.

    fetch dt.entity.application
    | fields application = entity.name

  3. Add a new event-based segment and add the following filter to it.

    related_entities.applications.names = $application

Filter expressions

In the filter field, you can use complex filter expressions to select which information is to be displayed:

  1. Go to the Prioritization page or the overview page of affected process groups or Kubernetes nodes.

  2. In the filter field, make your selection. You have the following options:

    • Add multiple filters on the same filter key

    • Use AND and OR operators

    • Use the wildcard (*) to search for patterns

    • Filter numbers with > and <

filter field

To reset the filters to the default mode, select Close tab on the right of the filter field.

If the selected filter doesn't show in the table, go to the column settings Column and make sure to add the corresponding column to the table.

Filter by CVSS vectors

While the Davis Security Score (DSS) is a key method for prioritizing vulnerabilities, filtering by CVSS Base Vector and CVSS Modified Vector components enables advanced triage and deeper analysis.

Use cases:

  • Filter by CVSS version: To find vulnerabilities scored using CVSS v4.0., select a CVSS vector in the filter field and enter "*CVSS:4.0*".
  • Filter by modified vector components: To find vulnerabilities where the attack vector has been adjusted based on your environment, select the CVSS Modified Vector in the filter field and enter "*MAV:*".
  • Filter by specific risk traits: To find vulnerabilities that require no privileges (PR:N) or affect multiple components (S:C), select a CVSS vector filter in the filter field and enter "*PR:N*" or "*S:C*".

cvss version filter

Filtering supports:

  • Partial matches (for example, AV: will match AV:N, AV:A, and so on)

  • Free-text input (no strict formatting required)

  • Case-insensitive search (for example, ui:n will match UI:N)

To learn more about CVSS scoring and vector structure, see How Dynatrace uses CVSS.

Format table

Select which columns are to be displayed:

  1. Go to the Prioritization page or the overview page of affected process groups or Kubernetes nodes.
  2. On the upper-right of the table, select the column settings Column.
  3. Select the desired columns, then select Confirm.

column settings

Sort columns

Select the order in which results in a column should be displayed:

  1. Go to the Prioritization page or the overview page of affected process groups or Kubernetes nodes.
  2. Select a column title.
  3. Select Sort ascending or Sort descending.

sort list

Related tags
Application Security