My name is Donghan Kim.
Please tell me if anyone knows the answer.
We scanned against two IP addresses.
Lets call is A and B
We are using Auto Scale of Amazon Web Service.
A and B are the IP addresses of load balancer.
QID:38170 was detected from B.
Both IP addresses have same CN (xxx.xxx.jp)
When we typed “nslookup” with CN, then it returned back B.
We wonder why the vulnerability was detected from B.
Why not A?
Could you please teach me how the Qualys system detects B not A?
If it is ok, please tell me the extracting mechanism of Qualys system regarding with this issue.