I need to provide a summary of all current vulnerability counts, grouped by severity.
I see that the Vulnerabilities page has that in the pie chart, but it seems to be all vulnerabilities from all reports and all time.
I tried using a Filter,
newest>=2023-08-01
but it times out.
Are there any indexes I can add to the DB to speed that filter up?
If I understand you correctly, you want to gain insight into recent vulnerabilities by severity class.
Iām not 100% sure what the newest filter does exactly, but it should not apply to the data you are trying to fetch. I think newest filter keyword specifically applies to vulnerabilities within scan results. Also, I donāt think that Greenbone currently supports >= or <= so you will have to rely on > and <
Instead, I think the created or modified keywords with the datetime and the severity class would do what you want.
Going by these CVSS v3 severity levels
For example, on the NVT page this filter would find NVTs with a severity of HIGH:
created>"2023-01-01" and severity>6.9 and severity<9
You can also use this filter on the CVEs page (and I think published works as well). If you use modified keyword instead of created, you can examine the By Creation Time chart at the top to see that some items will be included that were created before 2023-01-01.
(by default, it is showing/counting results from all time)
The āmodified>dateā filter does work better, but afaict it is only showing results Iāve added overrides to or otherwise modified. Itās not filtering on all recent results.
ācreatedā also works, but only shows new findings, not old findings that are still active.
I believe the ānewestā filter should give what I need, but the query runs for many minutes and eventually the web interface appears to time out.
So, probably an index would help?
OK, yes in the case that you are searching for vulnerabilities found in your hosts/environment then newest would show vulnerabilities that have a recent result found. I think created and modified would apply to the NVT itself.
Would an index help?
If you have THAT MANY vulnerabilities to sort, I guess it would likely help, but firstly, it doesnāt seem you have that many, and secondly, Iāll leave that to someone who knows the Greenbone subsystem better than me. I have 158 vulns in that page and its blazing fast.