In some situations, a reported vulnerability may be a known and accepted risk that is required for business, operational, or technical reasons. Rather than treating these findings as issues that require remediation, you can acknowledge them and document the reason for accepting the risk.

Navigation

• Go to Applications.

• Select the application containing the finding.

• Open the Results tab.

• Click Show result.

• Scroll down to the All vulnerabilities section.

• Select the vulnerability you want to review.

• Click on Acknowledge.

• In the Acknowledge message field, provide the reason for accepting the risk. Providing a clear explanation helps maintain an audit trail and gives team members additional context when reviewing findings.

• After entering the acknowledgement message, click Acknowledge. The finding will be marked as an accepted risk and the recorded message will be associated with the vulnerability for future reference.

• You can also mark an occurrence as an acknowledged risk. To do this, once you click on a particular vulnerability, click on Occurrence, and then Acknowledge.

Updated on: 25/06/2026