ACAS Parser: IAVA - Githubissues

CyberSecDef / scans2reports

An ACAS/SCAP/CKL scan parser and report generator

GNU Lesser General Public License v3.0

18 stars 3 forks source link

ACAS Parser: IAVA #101

Closed CyberSecDef closed 4 years ago

CyberSecDef commented 4 years ago

The IAVA/IAVB items aren't parsing properly.

First, only IAVA's are being captured....IAVB's are being skipped. (test for iavb node).

Second...for open IAVA/IAVB, the severity needs to come from the stig_severity coloumn. An IAVA can have a tenable severity of 2 and a DoD/DISA/IAVA severity of 1. The one is the proper severity to parse.