Hi to everyone, my first post, i can’t download the reports in particular csv with gvm-cli but in general all the reports have only the initial header but they don’t have the data.
Is it a strategy to force users to buy the commercial version or is it a bug?
the command that I run is :
gvm-cli --gmp-username admin --gmp-password admin socket --socketpath /var/run/gvmd.sock --xml ‘<get_reports report_id=“IDREPORT” format_id=“c1645568-627a-11e3-a660-406186ea4fc5” />’
the output is:
<get_reports_response status=“200” status_text=“OK”>admin2020-05-27T13:11:06Z<creation_time>2020-05-27T13:11:06Z</creation_time><modification_time>2020-05-27T15:03:53Z</modification_time>0<in_use>0</in_use>Scan Suspect Host<report_format id=“c1645568-627a-11e3-a660-406186ea4fc5”>CSV Results</report_format>SVAsSG9zdG5hbWUsUG9ydCxQb3J0IFByb3RvY29sLENWU1MsU2V2ZXJpdHksU29sdXRpb24gVHlwZSxOVlQgTmFtZSxTdW1tYXJ5LFNwZWNpZmljIFJlc3VsdCxOVlQgT0lELENWRXMsVGFzayBJRCxUYXNrIE5hbWUsVGltZXN0YW1wLFJlc3VsdCBJRCxJbXBhY3QsU29sdXRpb24sQWZmZWN0ZWQgU29mdHdhcmUvT1MsVnVsbmVyYWJpbGl0eSBJbnNpZ2h0LFZ1bG5lcmFiaWxpdHkgRGV0ZWN0aW9uIE1ldGhvZCxQcm9kdWN0IERldGVjdGlvbiBSZXN1bHQsQklEcyxDRVJUcyxPdGhlciBSZWZlcmVuY2VzCg==apply_overrides=0 min_qod=70 first=1 rows=10 sort=nameapply_overrides=0min_qod=70first=1rows=10sort=namenameascending<report_count>211</report_count></get_reports_response>
but when i decode report tag there is only the header of CSV :
IP,Hostname,Port,Port Protocol,CVSS,Severity,Solution Type,NVT Name,Summary,Specific Result,NVT OID,CVEs,Task ID,Task Name,Timestamp,Result ID,Impact,Solution,Affected Software/OS,Vulnerability Insight,Vulnerability Detection Method,Product Detection Result,BIDs,CERTs,Other References
but in the real report there are 16 host with CVSS more then 7 and QoD at 90%
actually i’m using : gvm-cli 2.1.0 (API version 1.5.0)
any ideas ?
Thanks in advance