Forum Discussion
Vulnerability issues with CENTOS 7 VMs
We've got a bunch of CENTOS 7 servers in our environment. Recently we've started using Security Center to try and make sure our servers are secure and we've got a lot of remediation work to do. H...
Hello mraymus,
I guess you are using Defender for server. Can you maybe try to trigger the vulnerability scanner manually on a CentOS machine, and see if the results are still false-positives:
sudo /usr/local/qualys/cloud-agent/bin/cloudagentctl.sh action=demand type=vm
You can also set an exemption with an expiration date but I would first try to understand why it triggers using the manual scan, and/or by contacting support indeed.
thank you
I guess you are using Defender for server. Can you maybe try to trigger the vulnerability scanner manually on a CentOS machine, and see if the results are still false-positives:
sudo /usr/local/qualys/cloud-agent/bin/cloudagentctl.sh action=demand type=vm
You can also set an exemption with an expiration date but I would first try to understand why it triggers using the manual scan, and/or by contacting support indeed.
thank you
we are having similiar issues... it seems as if the vulnerability assessment is also detecting old / not actively used versions of the kernel that are still residing on the server
- StanislavBelov
Microsoft
Thank you for your feedback. The best option would be to open a support ticket so that our engineers can collect logs, etc. and find the root cause of the issue.- yep, ticket was created. It seems as if this by design. To be honest, as long as I cannot filter for vulnerabilities of the running vs the nonrunning kernel, I will not be able to use the vulnerability assessment solution
- StanislavBelovare you using Qualys or MDE TVM for VA?
