Vulnerability CVE database could not be updated
562 views
Skip to first unread message
mariano hinjos
Feb 27, 2023, 5:00:29 AM2/27/23
to Wazuh mailing list
Hi
how could i add the insecure to the queries that wazuh launches? any ideas?
In my wazuh installation I have problems with company security.
When downloading the vulnerabilities it gives me errors
When downloading the vulnerabilities it gives me errors
2023/02/27 10:44:00 wazuh-modulesd:vulnerability-detector: WARNING: (5522): There was no valid response to 'https://nvd.nist.gov/feeds/json/cve/1.1/nvdcve-1.1-2010.meta' after '3' attempts.
2023/02/27 10:44:00 wazuh-modulesd:vulnerability-detector: WARNING: (5500): The 'National Vulnerability Database' database could not be fetched.
2023/02/27 10:44:00 wazuh-modulesd:vulnerability-detector: INFO: (5400): Starting 'Microsoft Security Update' database update.
2023/02/27 10:44:00 wazuh-modulesd:vulnerability-detector: INFO: (5430): The update of the 'Microsoft Security Update' feed finished successfully.
2023/02/27 10:44:00 wazuh-modulesd:vulnerability-detector: ERROR: (5513): CVE database could not be updated.
2023/02/27 10:44:00 wazuh-modulesd:vulnerability-detector: INFO: (5431): Starting vulnerability scan.
2023/02/27 10:44:00 wazuh-modulesd:vulnerability-detector: ERROR: (5582): Unavailable vulnerabilities at the NVD database. The scan is aborted.
but if i launch the url query with the --insecure parameter the query is done fine
2023/02/27 10:44:00 wazuh-modulesd:vulnerability-detector: WARNING: (5500): The 'National Vulnerability Database' database could not be fetched.
2023/02/27 10:44:00 wazuh-modulesd:vulnerability-detector: INFO: (5400): Starting 'Microsoft Security Update' database update.
2023/02/27 10:44:00 wazuh-modulesd:vulnerability-detector: INFO: (5430): The update of the 'Microsoft Security Update' feed finished successfully.
2023/02/27 10:44:00 wazuh-modulesd:vulnerability-detector: ERROR: (5513): CVE database could not be updated.
2023/02/27 10:44:00 wazuh-modulesd:vulnerability-detector: INFO: (5431): Starting vulnerability scan.
2023/02/27 10:44:00 wazuh-modulesd:vulnerability-detector: ERROR: (5582): Unavailable vulnerabilities at the NVD database. The scan is aborted.
but if i launch the url query with the --insecure parameter the query is done fine
curl https://nvd.nist.gov/feeds/json/cve/1.1/nvdcve-1.1-2010.meta --insecure
lastModifiedDate:2023-02-25T03:02:08-05:00
size:34741884
zipSize:1925129
gzSize:1924993
sha256:CBC15A0CCBB28F3677237BB87B02CFCAA8E212970EB9EA9A59F15D8EDE511C0F
lastModifiedDate:2023-02-25T03:02:08-05:00
size:34741884
zipSize:1925129
gzSize:1924993
sha256:CBC15A0CCBB28F3677237BB87B02CFCAA8E212970EB9EA9A59F15D8EDE511C0F
how could i add the insecure to the queries that wazuh launches? any ideas?
thanks in advance
Nicolas Osvaldo Fernandez
Feb 27, 2023, 5:55:53 AM2/27/23
to Wazuh mailing list
Hello, nice to greet you. Let me validate the documentation and do some tests and I'll get back to you.
Regards, Nicolas
Nicolas Osvaldo Fernandez
Feb 27, 2023, 10:55:05 AM2/27/23
to Wazuh mailing list
Hello, sorry for the delay.
Query, what version of wazuh-manager are you using?
Nicolás
German DiCasas
May 2, 2024, 10:27:50 AM5/2/24
to Wazuh | Mailing List
HI, same problem here... How you fix it Mariano? in my case is v4.7.3
Reply all
Reply to author
Forward
0 new messages