search

ThalesGroup / security-risk-assessment-tool

The ISRA security-risk-assessment-tool project is an Electron based application used to do security risk assessments at a technical level
BSD 4-Clause "Original" or "Old" License
22 stars 7 forks source link

[Issue]: Not able to delete an invalid vuln in an attack path #284

Open Alvin-JohnPagente opened 3 months ago

Alvin-JohnPagente commented 3 months ago

Issue Description

The issue is you are not able to delete a vulnerability in an attack path if the vulnerability is not set to the same supporting asset as the risk.

Duplicate Steps

  1. Open the attached sra file delete_vuln_in_attack_path_issue.zip then navigate to the issue in the Risks tab
  2. Go to the Attack paths and delete the first vuln in Attack Path 1 image
  3. Do the same for the first vuln in Attack Path 2 image
  4. Notice that the wrong vuln was deleted - issue 1 image
  5. Now try to delete the remaining vuln image
  6. An error dialog pops up that says the vuln cannot be deleted. The vuln ID is wrong. - issue 2 image

Expected Results

Allow deleting an "invalid" vulnerability. Improve the error message when there is an issue with deleting the vuln.

Version Detected

1.1.0 (Default)

Attachments

No response