We run the same scan each month and notice we are seeing duplicates in the reports. For example host 192.168.1.10 has two identical findings, I am unable to find any difference between the two.
Summary
.NET Core is prone to a denial of service
vulnerability.
Detection Result
Installed version: ASP .NET Core With Microsoft .NET Core runtimes 6.0.12
Fixed version: ASP .NET Core With Microsoft .NET Core runtimes version 6.0.13 or later
Installation
path / port: Could not find the install location from registry
Do they have the same VT OID (Vulnerability Test Object Identifier)? It is possible that the .NET version on your system is vulnerable to multiple DOS vulnerabilities. See the screenshot, which is a list of various .NET Core vulnerabilities that all have the same description. You can find them from the SecInfo page of GVM, or from the SecInfo Portal using the filter term “.NET Core is prone to a denial of service”.
Make sure to run a version of the manager (gvmd --version) 22.5.0 or later to include the PR below:
There is currently some software stack component creating duplicated results but the root cause is unknown so the manager tries to filter them out.
Note: I’m still seeing duplicated results from time to time (which are gone on a subsequent scan again) even with more recent versions including that PR so the mitigation on manager side might not catch all (edge) cases.
Not sure why it would trigger twice.
