Skip to main content
CENEDRIL MANUAL
Open Cenedril
Security Operations & Threat Intel · Vulnerabilities

Import vulnerabilities from a scanner

Updated on 3 min Pro plan Open in Cenedril

Goal Upload a vulnerability scanner's CSV export (e.g. Nessus, OpenVAS, Qualys), map the columns to Cenedril's fields, and import every finding as a vulnerability instance in one batch.

In Cenedril you import scanner results by opening Vulnerability Instances under Documentation, clicking Import in the top right, and uploading your scanner’s CSV export. Cenedril detects the common column names automatically, you review the mapping and a preview, and one click turns every row into an individual vulnerability instance. This brings a whole scan run into your vulnerability management in a single batch.

Start the import

Open Vulnerability Instances

In the sidebar open Documentation and go to Vulnerability Instances. The page shows a table of all findings with status, severity and SLA deadline, plus the All, Active and Closed tabs.

The vulnerability instances list with the “Import” button in the top right.

Open the import dialog

Click Import in the top right. The Import Scanner Results dialog opens with an area for uploading the file.

Upload the CSV file

Drag your CSV file into the Drag and drop a CSV file here or click to browse area, or click it to select the file. The note Supported: Nessus, OpenVAS, Qualys and other CSV exports shows which sources are intended. Once the file is read, the dialog moves on to column mapping.

Map and review the columns

Check the column mapping

In the Map the columns of your CSV file to the corresponding fields step you see Cenedril’s target fields: Title, Description, CVE, Severity, CVSS, Affected Component and Plugin/Scanner ID. Commonly used column names are already preselected. Adjust the selection with the dropdowns where needed, or set a field to Do not map.

The column mapping: Cenedril's fields on the left, the detected CSV columns on the right.

Open the preview

Click Preview. Cenedril shows the first ten entries with title, CVE, severity, CVSS and affected component, along with the total number of vulnerabilities to be imported. Confirm that severities and components were recognised correctly. Use Back to return to the mapping if you want to adjust anything.

The preview of the first entries before import, with title, CVE, severity and component.

Complete the import

Import the vulnerabilities

Click Import. The button shows the number of entries, for example Import 42. Cenedril creates all valid rows as vulnerability instances. If individual rows contain errors, they are skipped and listed at the end with the row number and the reason.

Confirm the result

After the import the message Import Complete appears with the number of vulnerabilities created successfully. Close the dialog. The new entries are immediately in the vulnerability instances list and start with the status Detected.

Result: every finding from the scan run is now an individual vulnerability instance in the list under Documentation. Use Details to open each instance and continue with assessment, decision and remediation.

Frequently asked questions

Which scanners and file formats are supported?

Cenedril reads CSV exports (including tab- or semicolon-separated). The upload dialog names Nessus, OpenVAS and Qualys explicitly, and other CSV exports work just as well. Common column names are detected automatically during import.

Which column do I have to map at a minimum?

Only the Title field is required. Without a mapped title column the preview cannot open. Fields such as CVE, Severity, CVSS, Affected Component and Plugin/Scanner ID are optional and are imported as soon as you map them.

How are severity levels imported?

Cenedril normalises the values of the severity column to the levels Critical, High, Medium, Low and Informational. Both text values (critical, high) and numeric risk levels (0 to 4) are recognised.

What happens to rows that cannot be imported?

The import creates all valid rows. Rows with errors are skipped and listed at the end, with the row number and the reason. The other vulnerabilities are not affected.

Where do I find the imported vulnerabilities afterwards?

After the import all findings appear as vulnerability instances in the list under Documentation. Use “Details” to open each instance and continue with assessment, decision and remediation.

Security Operations & Threat Intel

Bedrohungen MITRE-ATT&CK-Techniken zuordnen

So ordnen Sie einer erfassten Bedrohung im Bedrohungsregister die passenden MITRE-ATT&CK-Techniken zu und verknüpfen so operative Threat Intelligence mit Ihrem ISMS.

Security Operations & Threat Intel

Schwachstellen-Behebung nachverfolgen

So verfolgen Sie in Cenedril den Behebungsfortschritt einer gemeldeten Schwachstelle entlang der Phasen Erkannt, Bewertung, Entscheidung und Auflösung bis zum Abschluss.