I installed GCE 6, and was surprised to see no results in the scan. I have one device in the network with a default user and no password. In the logs I can see GCE6 log in to the device. The report however does NOT show there are default accounts open.
Greenbone OS 6.0.0 feed from 2 days old
Wed, Nov 20, 2019 10:33 AM UTC
Done RouterOS
Severity 2.6 (Low)
|0|0|3|36|0|
I fired up an old VM I still had, and that DOES show the default account in the reports
Greenbone OS 4.2.24 feed from 50 days old
Wed Nov 20 10:33:48 2019
Done RouterOS
Severity 5.5 (Medium)
|0|4|3|37|0|
for clarity: I deleted all reports on both, and created the same task on both. It’s just the GCE version and the feed that varies. The default accounts is not the only flaw that goes by undetected
you should always compare the scans with the same feed version. It may be possible that the feed has changed e.g. severities have been updated during the 48 days. Also without knowing the full details about the used scan config and run nvts it is very difficult to compare both scans.
Thanks both for replying. I will run both with same (updated) feeds.
However, regardless the outcome of that:
the GCE-6 had the latest feed, it should have reported flaws like admin and root account which neither have a password. and it did not.
Detected by GCE4 with an old feed (and not by GCE6 with new feed) ran against the same device: