I have a list of QIDs from a scan, but this means nothing to me - I need the CVE # or, preferably the description of the vulnerability. The fact that a machine has QID 118727 is less than useless - where can I find a cross reference?
I am not clear on how you were presented with the list of QIDS. Did you receive a Qualys Report, a data dump through the API, or an email from a co-worker?
I would ask the person, who gave you the list, to provide you with the QualysGuard Technical Scan Report.
A default Technical Scan Report would have the data that you are asking for.
If you are dealing with a large number of hosts, you could create a new Report Template and sort by Vulnerability.
If you have a small list of QIDs, you could look them up through the QualysGuard Knowldgebase.
For QID 118727 "Red Hat Update for Kernel (RHSA-2010-0839)".
The QID covers CVE-2010-3066, CVE-2010-3067, CVE-2010-3078, CVE-2010-3086 and CVE-2010-3477.
If you have any further questions, please don't hesitate to contact Qualys Support.
Retrieving data ...