search

greenbone / gvmd

Greenbone Vulnerability Manager - The database backend for the Greenbone Community Edition
GNU Affero General Public License v3.0
281 stars 153 forks source link

[9.0.0] Missing tags #831

Closed TheDoctor0 closed 4 years ago

TheDoctor0 commented 4 years ago

Expected behavior

Reports generated through gvm-cli should contain all NVT tags, qod_type and scan_nvt_version.

Current behavior

Only cvss_base_vector, solution and solution_type tags are included in report, qod_type and scan_nvt_version are empty. Single result for NVT with oid 1.3.6.1.4.1.25623.1.0.812072 from generated report: Gist. I tested it with XML, ARF and PDF formats, same results.

Same result from the report that was generated using the older version (OpenVAS 9): Gist.

Record for this NVT in nvts table - data for those tags is present:

Screenshot 2019-10-24 at 15 34 04

Records in results table - nvt_version and qod_type are empty for all rows:

Screenshot 2019-10-24 at 15 36 05

Steps to reproduce

  1. Create a new target (vulnerable host), create and start a new task.
  2. Wait for the scan to finish.
  3. Generate a report using gvm-cli with report_id parsed from get_tasks output and any format_id: 
    su - service -c "gvm-cli --gmp-username admin --gmp-password admin socket --xml '<get_reports report_id=\"{}\" format_id=\"{}\" filter=\"levels=hmlg\" details=\"1\" notes_details=\"1\" result_tags=\"1\" ignore_pagination=\"1\"/>'"

GVM versions

gsa: Not used gvm: 9.0.0 openvas-scanner: 7.0.0 gvm-libs: 11.0.0 openvas-smb: 1.0.5

Environment

Operating system: Debian 10 (Docker)

Installation method / source: Built from sources from the latest releases.

Logfiles

openvas.log gvmd.log

TheDoctor0 commented 4 years ago

Just checked scan result from 9.0.1 and all tags are present - fixed by #1001.