vulnerability detection different vulnerabilities Wazuh vs Nessus

[Johny Novent]

Hello everyone

We perform one analysis with Nessus and one with vulnerability detection.

At the same time we received the report from Nessus and vulnerability detection

these are the results 

this is the vulnerabilities from Wazuh vulnerability detection

this is from Nessus

There is one vulnerability that doesn't appear in vulnerability detection and that appears in the report from Nessus, is a vulnerability about apache tomcat 

Why if vulnerability detection use NVD and this database detects this vulnerability in the page of NIST NVD, why this package or process doesn´t appears in the vulnerabilities of Wazuh vulnerability detection???

What is the difference between Nessus report and vulnerability detection report???

Many vulnerabilities are the same in both reports, but why like the apache tomcat vulnerability doesn't exist in the vulnerability detection report ??

Best regards

[Leonardo Quiceno]

Hi Johny Novent, 

I hope this message finds you well. 

Regarding the issue you're experiencing, let's go step by step to determine the possible reasons why this vulnerability is not being detected. 

Could you share with me the following information to help you better? Packages and OS information of the agent. To get the packages and OS info, you can get the information directly from the API, using the following queries:
(for example from the WUI you can use the following tool to run the queries: Modules -> tools -> Api console

GET /syscollector/{agent_id}/packages

GET /syscollector/{agent_id}/os

With this information, we can begin analyzing this specific case.

Looking forward for your answer.

Best regards,

Leo.