Hey guys, I’m new to using openvas. And I am encountering some issues. I found a vulnerability using an nmap scan (CVE-2021-1636), and since I want to learn to scan with openvas I tried detecting it with openvas. However it is not found:
I know the CVE is in the openvas database (I can find it by lookin in the CVE list at secinfo tab). And I’m sure the device is vulnerable for this (also checked the version using lansweeper)
Could someone help me figuring this out?
Thanks in advance!
Could not upload images in one post
Welcome to the community anddam,
This CVE is covered by the Greenbone Enterprise Feed but not included in the Greenbone Community Feed. See:
Solution Comparison > Feed
Hey, thanks for the quick response. Is there a reason for this not being covered by the community edition?
Microsoft SQL Server (MSSQL) has been defined as an enterprise grade product and is thus only covered via the Greenbone Enterprise Feed (GEF).
As an additional note:
The initial screenshot shows some environmental problems (setup problem of GVM, networking issues, …) because not a single product / application was found. Such issues are not discussed in this category but some existing threads are available outside of it:
Only logs are returned on a scan. No vulnerabilities are found even on known vulnerable machines.
I have current versions installed NVTS, CERT, SCAP, only GVMD-DATA writes me Too old (60 days). This is the result of my scan -
but when i change scan config from “full and fast” to “Discovery” i now find 16 log messages.
Whan i gonna do to find vulnerabilities, not logs.
I use GSA 21.4.3
Kali linux 2022.1 on Oracle VM VirtualBox
gsad: (‘gsad --version’)
Greenbone Security Assistant 21.4.1~dev1
gvmd: (‘gvmd --version’)
Greenbone Vulnerability Manager 21.4.2~git-09bdb532f-HEAD
GIT revision 09bdb532f-HEAD
Manager DB revision 242
openvas-scanner: (‘openvas --version’, in older GVM versions < 11: ‘openvassd --version’)
GIT revision ~git-81c6a4e8-HEAD
Debian GNU/Linux 10 (buster)
gsad: Greenbone Security Assistant 21.4.1~dev1
gvmd: Greenbone Vulnerability Manager 21.4.3~dev1~git-f777b0c3-gvmd-21.04
openvas-scanner: OpenVAS 21.4.2~dev1~git-5491c324-openvas-21.04
Operating system: Ubuntu 20.04.2 LTS
Kernel: Linux UUU 5.4.0-77-generic #86-Ubuntu SMP Thu Jun 17 02:35:03 UTC 2021 x86_64 x86_64 x86_64 GNU/Linux
Installation method / source:
I reference this url to install
I checked, i have nmap and Feed Statu…
Thanks for your reaction as well. I checked out some of the other posts and got it fixed. Results look a lot better now: