Hi
We have implemented an automated way (using gvm-tools python and plain bash scripts) that updates NVT data, syncs which targets to scan, when to scan and then in the end emails a report and creates an issue in Jira (our issue tracker) in case of critical severity’s found on any of our servers
Our servers is running postgres so all is reporting a critical (severity 9.0) issue due to CVE-2019-9193 which we would like to ignore (and perhaps others in future). Is there a way that we can make the scan ignore CVE’s somehow ?
Regards
Stefan