Detailed description of the override function

Building from Source and Advanced Topics
1

Hello,
I am using Greenbone Security Assistant (GSA) / OpenVAS version 24.5 and have created two overrides. Unfortunately, the new severity level is not taken into account in the reports. Is there a detailed description for the override function? Or can I search for log entries?

The installation runs on a Kali-Linus

Many thanks and best regards

2

The overrides are documented in the manual for our product

1 Like
3

Many thanks for the link to the documentation. I have checked the override, but I have not found the error.
Just to be sure, the override function already changes the “severity” in the report ?

Because the override has no effect.

This my override:

|NVT-Name|
[AVM FRITZ!Box Information Disclosure Vulnerability (Nov 2024) - Active Check]

|NVT-OID|
1.3.6.1.4.1.25623.1.0.153814|

|Aktiv | Ja|
|Active | Yes|

Anwendung

|Hosts|192.xxx.xxx.xxx|

|Port | 443/tcp|

|Schweregrad | Beliebig|
|severity | any|

|Aufgabe| Broadcast and Nmap top 100 UDP/ICMP|

|Ergebnis | Beliebig|
|Result | Any|

Aussehen

Appearance

Ăśbersteuerung von Beliebig nach 2: Niedrig

Override from Any to 2: Low

Ein Problem der Zutrittskontrolle in der Komponente /juis-boxinfo.xml von AVM FRITZ!Box 7530 AX v7.59 ermöglicht es Angreifern, sensible Informationen ohne Authentifizierung zu erhalten. HINWEIS: Dies wird vom Lieferanten bestritten, weil es nicht reproduziert werden kann, und der Ausgabebericht konzentriert sich auf eine unbeabsichtigte Konfiguration mit direkter Internet-Exposition. Auserdem geht es im getesteten WLAN um eine Fritz!Box 7590 v.8.03. Ich gehe davon aus, dass es kein hoch kritisches Risiko ist.

An access control issue in the /juis-boxinfo.xml component of AVM FRITZ!Box 7530 AX v7.59 allows attackers to obtain sensitive information without authentication. NOTE: This is disputed by the vendor because it cannot be reproduced, and the issue report focuses on an unintended configuration with direct Internet exposure. Furthermore, the WLAN tested is a Fritz!Box 7590 v.8.03. I assume that it is not a highly critical risk.

Many thanks

4

You still need to activate the overrides in a scan report

grafik
grafik550Ă—337 14.1 KB

2 Likes
5

Hi Bricks,
many thanks for this info. I have checked my setting and have found the right setting “Apply Overrides” on some points.

Would you please describe in more detail where the location of your screen shot is.

Many thanks and best regards

6

You can see from the screenshot this is in the filter dialog. Filters are in the top right-hand corner of the report view/page. :slight_smile:

1 Like
7

Many thanks, :waving_hand:
the problem is solved.
bricks and rippledj it was a great support

2 Likes