MaineK00n
commented
2 months ago It's true, it's gone https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19325
The reason is that it remains on vuln-list-redhat.
Closed wagde-orca closed 1 month ago
MaineK00n
commented
2 months ago It's true, it's gone https://access.redhat.com/hydra/rest/securitydata/cve/CVE-2018-19325
The reason is that it remains on vuln-list-redhat.
MaineK00n
commented
2 months ago
What did you do? (required. The issue will be closed when not provided.)
docker run --rm -v $PWD:/gost vuls/gost fetch redhat --debug
What did you expect to happen?
i expected not to see CVE-2018-19325 in DB (for this CVE.. it was removed from NVD and from redhat security tracker)
What happened instead?
I see that the CVE in the DB and vuls reports the tcpdump if affected...
I looked at the code and i did not see any code that ignores CVEs that have " REJECT " in the details field like we have in the oval DB... i think the code of ConvertRedhat in models/redhat.go should be modified to ignore such CVEs...
references: this is the source wher we take the CVE https://github.com/aquasecurity/vuln-list-redhat/blob/main/api/2018/CVE-2018-19325.json