AnsweredAssumed Answered

Libxml2 QID's - False Positives

Question asked by greensubmarine on May 3, 2017
Latest reply on May 3, 2017 by Robert Dell'Immagine

Is anyone else getting false positives from QIDs 168917, 168998, 196492 and 175754? 

 

These are the same issue for four different linux distro's but we're getting all 4 coming up on remote scans for Windows boxes and Linux distros that Qualys has not been able to fully identify.

 

The problem is these are being flagged as "Confirmed" vulnerabilities rather than "Potential" which is clearly not right.

 

The QID's have been around for a little while but were updated last week and that's when the trouble started.  Anyone any ideas what the test is doing and what it information it is basing the assumption of a confirmed vulnerability on?

 

I have raised a support case for this but I can't say I'm getting what I need from that side.

Outcomes