Dear Community,
I noticed after a vulnerability scan, the presence of several vulnerabilities that do not impact the host operating system. These vulnerabilities should not be present but they are. Is this a mistake?
For example:
Vulnerability: Medium (CVSS: 5.0)
NVT: TCP Sequence Number Approximation Reset Denial of Service Vulnerability
CVE References: CVE-2004-0230
This vulnerability concerns the following Operating Systems :
Microsoft Windows XP and Microsoft Windows Server 2003
But the scan was performed on a Microsoft Windows Server 2016 and the vulnerability is present.
Do you know why?
Thank you in advance
Translated with www.DeepL.com/Translator (free version)
GVM versions
GSA 7.0.3
OpenVAS Scanner 5.1.3
Environment
Operating system: kali linux
Kernel: Debian 4.19