Gvm-cli command dowload empty report

drytek · May 27, 2020, 9:06pm

Hi to everyone, my first post, i can’t download the reports in particular csv with gvm-cli but in general all the reports have only the initial header but they don’t have the data.
Is it a strategy to force users to buy the commercial version or is it a bug?
the command that I run is :

gvm-cli --gmp-username admin --gmp-password admin socket --socketpath /var/run/gvmd.sock --xml ‘<get_reports report_id=“IDREPORT” format_id=“c1645568-627a-11e3-a660-406186ea4fc5” />’

the output is:

<get_reports_response status=“200” status_text=“OK”>admin2020-05-27T13:11:06Z<creation_time>2020-05-27T13:11:06Z</creation_time><modification_time>2020-05-27T15:03:53Z</modification_time>0<in_use>0</in_use>Scan Suspect Host<report_format id=“c1645568-627a-11e3-a660-406186ea4fc5”>CSV Results</report_format>SVAsSG9zdG5hbWUsUG9ydCxQb3J0IFByb3RvY29sLENWU1MsU2V2ZXJpdHksU29sdXRpb24gVHlwZSxOVlQgTmFtZSxTdW1tYXJ5LFNwZWNpZmljIFJlc3VsdCxOVlQgT0lELENWRXMsVGFzayBJRCxUYXNrIE5hbWUsVGltZXN0YW1wLFJlc3VsdCBJRCxJbXBhY3QsU29sdXRpb24sQWZmZWN0ZWQgU29mdHdhcmUvT1MsVnVsbmVyYWJpbGl0eSBJbnNpZ2h0LFZ1bG5lcmFiaWxpdHkgRGV0ZWN0aW9uIE1ldGhvZCxQcm9kdWN0IERldGVjdGlvbiBSZXN1bHQsQklEcyxDRVJUcyxPdGhlciBSZWZlcmVuY2VzCg==apply_overrides=0 min_qod=70 first=1 rows=10 sort=nameapply_overrides=0min_qod=70first=1rows=10sort=namenameascending<report_count>211</report_count></get_reports_response>

but when i decode report tag there is only the header of CSV :

IP,Hostname,Port,Port Protocol,CVSS,Severity,Solution Type,NVT Name,Summary,Specific Result,NVT OID,CVEs,Task ID,Task Name,Timestamp,Result ID,Impact,Solution,Affected Software/OS,Vulnerability Insight,Vulnerability Detection Method,Product Detection Result,BIDs,CERTs,Other References

but in the real report there are 16 host with CVSS more then 7 and QoD at 90%

actually i’m using : gvm-cli 2.1.0 (API version 1.5.0)

any ideas ?

Thanks in advance

bricks · May 28, 2020, 5:54am

No! Of course not!

Could you try the command without a report format and check if it contains the correct data? Should be

<get_reports report_id=“IDREPORT” />

drytek · May 28, 2020, 8:55am

I tried command but no details about single host just summary information about task this is the output :

<get_reports_response status=“200” status_text=“OK”>admin2020-05-28T00:20:07Z<creation_time>2020-05-28T00:20:07Z</creation_time><modification_time>2020-05-28T00:46:44Z</modification_time>0<in_use>0</in_use>Test<report_format id=“a994b278-1f62-11e1-96ac-406186ea4fc5”>XML</report_format> 9.0nameascendingapply_overrides=0 min_qod=70 first=1 rows=10 sort=nameHighMediumLowLogDebugapply_overrides=0min_qod=70first=1rows=10sort=name<severity_class id=“d4c74cda-89e1-11e3-9c29-406186ea4fc5”>nist<full_name>NVD Vulnerability Severity Ratings</full_name><severity_range>None0.00.0</severity_range><severity_range>Low0.13.9</severity_range><severity_range>Medium4.06.9</severity_range><severity_range>High7.010.0</severity_range></severity_class><scan_run_status>Done</scan_run_status>3<closed_cves>0</closed_cves>2812<ssl_certs>2</ssl_certs>SuperTest0Assets1002020-05-28T00:19:51Z<scan_start>2020-05-28T00:20:07Z</scan_start>Coordinated Universal Time<timezone_abbrev>UTC</timezone_abbrev><result_count>11211211200001110510566<false_positive>00</false_positive></result_count>6.46.4<scan_end>2020-05-28T00:46:44Z</scan_end>0<report_format></report_format>apply_overrides=0 min_qod=70 first=1 rows=10 sort=nameapply_overrides=0min_qod=70first=1rows=10sort=namenameascending<report_count>111</report_count></get_reports_response>

bricks · May 28, 2020, 10:08am

Ok I did expect this. Please try to include the details of the report.

<get_reports report_id=“IDREPORT” details="1" />

if that response contains the expected data you can re-add the report format to the request.

drytek · May 28, 2020, 5:19pm

Thanks Bricks,

it seems to be working properly now, I complete the tests.
Thanks again and as often said… the difference lies in “details”.

toha87 · August 16, 2020, 9:43am

I have the same issue, getting an empty CSV report
Running gvm-cli 2.0.0 (API version 1.2.0)
command: gvm-cli --gmp-username=${username} --gmp-password=${password} socket --xml "<get_reports report_id='${reportID}' format_id='c1645568-627a-11e3-a660-406186ea4fc5' details='1'/>"
Can you help me, please?

GvH · August 21, 2020, 11:35am

Same problem here. CSV results is empty, but PDF, TXT or XML formats give the proper results if I only change the formad_id.
Running gvm-cli 2.0.0 (API version 1.2.0) on Kali rolling fully updated.
BTW: exporting to CVS Results from the web-interface also results in an empty file, while XML, TXT or PDF are fine.