Make sure you have completed the following prerequisites to view the Advisor data:
The Advisor feed must be up-to-date, processed, and loaded into the Sentinel database.
The selected event is from a product supported by Advisor and has the Vulnerability field value set to 1.
You can view the Advisor data from the following options:
In the Sentinel Control Center, click
.In the real-time events table, right-click an event that has the Vulnerability field value set to 1.
Click
> .In the Sentinel Web interface, click vul:1 in the field, then click .
> or specifyAll events that are likely to have exploited a known vulnerability are displayed.
You can also view the report for these events by selecting the desired events, then clicking
> .