/build/static/layout/Breadcrumb_cap_w.png

Superceded patch.

When drilling down into a vulnerability in an oval report, we found the patch associated with that threat was marked inactive, a decision made because it had been superceded by another patch (which was active). Shouldn't the machines that have the more recent patch be shown in the report as not vulnerable to the particular threat? thanks, Owen
Asked 13 years ago 2552 views
0 Comments   [ + ] Show comments

Answers (1)

Posted by: zookdj 13 years ago
Second Degree Blue Belt
0
I would recommend not using the OVAL scanner in the KBox. I haven't found it that accurate or helpful. Instead, we are using OpenVAS from an Ubuntu vm for our internal vulnerability scans, which covers non-Windows machines as well.
Rating comments in this legacy AppDeploy message board thread won't reorder them,
so that the conversation will remain readable.
 
This website uses cookies. By continuing to use this site and/or clicking the "Accept" button you are providing consent Quest Software and its affiliates do NOT sell the Personal Data you provide to us either when you register on our websites or when you do business with us. For more information about our Privacy Policy and our data protection efforts, please visit GDPR-HQ