Change of Scanner to CVE


#1

Hello, I want to use CVE as my scanner for finding Vulnerabilities but when run task which is configured with CVE as Scanner, it gets completed within a second. Can you please me in this.


#2

That is correct, the CVE scanner is going through your asset management and maps the new CVEs to the CPEs and assets you already have within your database. So you still need to fill up your asset management with a discovery scan for example.


Custom Scan for CVE-2019-0708
#3

Can you please explain or share some documents explaining the complete scenarios


#4

There is currently no such documentation available. But the following two mailing list postings have some basic background infos:

http://lists.wald.intevation.org/pipermail/openvas-discuss/2017-July/011252.html
http://lists.wald.intevation.org/pipermail/openvas-discuss/2017-July/011263.html


#5

The “Greenbone Security Manager with Greenbone OS 4” has received a huge update for GOS 4.3 which now covers the CVE Scanner / Prognosis topic:

https://docs.greenbone.net/GSM-Manual/gos-4/en/vulnerabilitymanagement.html#running-a-prognosis-scan