Fixing openvas parser and including script_id for openvas and nmap (#…

…11454) * fixing openvas parser and including script_id for openvas and nmap * updating xml openvas parser * updating to not modify NVT
DefectDojo · Jan 23, 2025 · 321d580 · 321d580
1 parent a9ee04b
commit 321d580
Show file tree

Hide file tree

Showing 2 changed files with 5 additions and 0 deletions.
diff --git a/dojo/tools/nmap/parser.py b/dojo/tools/nmap/parser.py
@@ -96,6 +96,7 @@ def get_findings(self, file, test):
                             "**Extra Info:** {}\n".format(port_element.find("service").attrib["extrainfo"])
                         )
                     description += service_info
+                script_id = None
                 if script := port_element.find("script"):
                     if script_id := script.attrib.get("id"):
                         description += f"**Script ID:** {script_id}\n"
@@ -126,6 +127,7 @@ def get_findings(self, file, test):
                         severity=severity,
                         mitigation="N/A",
                         impact="No impact provided",
+                        vuln_id_from_tool=script_id,
                     )
                     find.unsaved_endpoints = []
                     dupes[dupe_key] = find

diff --git a/dojo/tools/openvas/xml_parser.py b/dojo/tools/openvas/xml_parser.py
@@ -16,6 +16,7 @@ def get_findings(self, filename, test):
         report = root.find("report")
         results = report.find("results")
         for result in results:
+            script_id = None
             for finding in result:
                 if finding.tag == "name":
                     title = finding.text
@@ -28,6 +29,7 @@ def get_findings(self, filename, test):
                     description.append(f"**Port**: {finding.text}")
                 if finding.tag == "nvt":
                     description.append(f"**NVT**: {finding.text}")
+                    script_id = finding.get("oid") or finding.text
                 if finding.tag == "severity":
                     severity = self.convert_cvss_score(finding.text)
                     description.append(f"**Severity**: {finding.text}")
@@ -43,6 +45,7 @@ def get_findings(self, filename, test):
                 severity=severity,
                 dynamic_finding=True,
                 static_finding=False,
+                vuln_id_from_tool=script_id,
             )
             findings.append(finding)
         return findings