A risk which contains a vuln with a non-matching supporting asset triggers an error on save but the error message does not tell you the exact issue.
Duplicate Steps
Open the attached sra, navigate to the Risks tab, go to the attack paths of the risk. The vuln is highlighted by a red box which indicates there is an issue with the vuln
Go to the Vulnerabilities tab. Notice that there is no visible issues with the vulnerabilities
Save the file (Ctrl-S). The error message says that the issue is in the risk evaluation section. The issue is actually the vuln supporting asset does not match the risk supporting asset. The user either have to: update the risk's supporting asset or the vuln supporting asset or remove the vuln.
Expected Results
The error message can indicate that the Risk ID n contains a vuln in the attack path x that has a non-matching supporting asset
Issue Description
A risk which contains a vuln with a non-matching supporting asset triggers an error on save but the error message does not tell you the exact issue.
Duplicate Steps
Expected Results
The error message can indicate that the Risk ID n contains a vuln in the attack path x that has a non-matching supporting asset
Version Detected
1.2.0
Attachments
non_matching_supporting_assets.zip
No response