I’m running 2 containers containing vulnerable processes with log4j vulnerability.
My feed is probably updated since i have cves and nvts up until April 14 2022 ~
I’m still not getting results.
I know there is a connection between the greenbone software and the docker services since i can see the JAVA logs in the containers receiving requests from the scanner (but not the log4j ones though i don’t know how to tell).
this is my feed status
also these are my scan configs
i’ve tried running:
greenbone-nvt-sync && greenbone-feed-sync --type GVMD_DATA && greenbone-scapdata-sync && greenbone-certdata-sync
but that doesn’t help.
i’ve noticed the scan configs are of 2020?
is this ok?
in the feed status everything is 2022 even the GVMD DATA which is 78 days old as it says.
Also: Can anyone maybe upload Full and Fast scan config XML file so i can import it if there is a new version?