Closed ignis-sec closed 4 years ago
Currently, nmap plugin does not handle vulnerability script scan results correctly, because it is setting a severity of "high" depending on this line:
plugin.py:514
if re.search(r"VULNERABLE", desc): severity = "high"
This line matches following tags:
Added a negative lookbehind for "NOT".
if re.search(r"(?<!NOT )VULNERABLE", desc):
Following is an example of false positive high's set by the plugin.
Merged! Thanks for the Pull Request.
Currently, nmap plugin does not handle vulnerability script scan results correctly, because it is setting a severity of "high" depending on this line:
plugin.py:514
This line matches following tags:
Added a negative lookbehind for "NOT".
plugin.py:514
Following is an example of false positive high's set by the plugin.