We currently use Retina from BeyondTrust and I am never happy when Security produces a report. For example I had a report listing multiple Kernel Vulnerabilities going back over 2 years but the report shows we have the latest kernel applied which has all of the mentioned CVEs fixed. Another would be NTP. It looks at the version and flags it as high because it is 4.2 and not 5.0 and provides a CVE. You look up the CVE and it shows it doesn't apply to this version of RHEL.
I run into the same problems with Ubuntu.
So is there a Vulnerability Scanner out there that will produce accurate reports? or am I going to be dealing with this regardless of the software used?
Thanks in advance.
[link] [comments]