Get_report() inaccurate results

sandels · January 13, 2021, 3:50pm

Hello,

I’ve been fiddling around with the GMP protocol for a while, and have stumbled across a weird phenomenon. By using the get_report() command, I get a different report than the one printed out by GSA. I use the command in the following way:

gmp.get_report(report_id=report_id, report_format_id=pdf_format, details=True, filter=“levels=hml notes=1”)

Even though the filtering should be the same, the GSA report contains two hosts with vulnerabilities whereas the report retrieved with the command only has one. Also, the command-based report is missing a vulnerability that is classed “high” from the host that appears in both reports, even though it is not filtered out.

I am using the latest build of GVM, and the GMP 20.08 protocol.

y0urself · January 15, 2021, 9:40am

Hi,

welcome to the Greenbone Community Forum.

I tried to reproduce this, without success. My reports are identically.

Did you experienced this issue with other reports?
Did you tried the pdf-report.gmp.py script from gvm-tools? Is it leading to the same difference?
Did you used the correct report_format UUID?

Maybe you can send me the report as XML, so I can try to reproduce it?

sandels · January 19, 2021, 10:18am

Hello,

By examining the XML versions, there were filters present in the GSA report that were not included in the GMP command. I believe setting a filter rows=1000 fixed the issue, as in the GMP generated report the value was rows=10.

So the full command now is:

`gmp.get_report(report_id=report_id, report_format_id=pdf_format, details=True, filter="levels=hml notes=1 rows=1000 overrides=1")`

This generates all results into the report.

y0urself · January 19, 2021, 10:48am

Oh surely. Didn’t come to my mind that it might be a problem with the filter.
Btw. setting row=-1 makes them unlimited (so you don’t need to guess how many rows you might need).