How to check Vulnerability Feed status

69 views
Skip to first unread message

j885...@gmail.com

unread,
Nov 7, 2025, 4:32:30 AM (4 days ago) Nov 7
to Wazuh | Mailing List
Hello!

Could you please advise, how do I check the date when vulnerability feed was last downloaded from Wazuh servers (I'm not using offline version)? Any specific files to check in /var/ossec/queue/vd?

I suspect that downloading might be failing but I didn't find proof of either success or fail in Wazuh logs yet.

Bony V John

unread,
Nov 7, 2025, 5:11:47 AM (4 days ago) Nov 7
to Wazuh | Mailing List
Hi,

Please allow me some time, I'm working on this and will get back to you with an update as soon as possible.

Bony V John

unread,
Nov 7, 2025, 5:51:02 AM (4 days ago) Nov 7
to Wazuh | Mailing List
Hi,

To check when your vulnerability feed was last updated on the Wazuh Manager, you can review the ossec.log file located on the manager.

After a successful feed update, Wazuh logs an entry similar to the following:

2025/11/07 03:24:03 wazuh-modulesd:vulnerability-scanner: INFO: Feed update process completed.

This log message indicates that the vulnerability feed was successfully updated.

You can run the following command on your Wazuh Manager to check for the latest update entry:

cat /var/ossec/logs/ossec.log | grep "vulnerability-scanner" 

If the update was completed successfully, you’ll see an output similar to the example above.

If you don’t see such logs on your end, please share the following details for further analysis:

  • The Wazuh Manager configuration file: /var/ossec/etc/ossec.conf

  • The Wazuh Manager log file: /var/ossec/logs/ossec.log

  •  Additionally, if you encounter any issues related to the vulnerability module, please let us know.  

هارون السلامي

unread,
Nov 8, 2025, 1:41:02 AM (3 days ago) Nov 8
to Bony V John, Wazuh | Mailing List
Hello, how are you? I need your help with something. 

--
You received this message because you are subscribed to the Google Groups "Wazuh | Mailing List" group.
To unsubscribe from this group and stop receiving emails from it, send an email to wazuh+un...@googlegroups.com.
To view this discussion visit https://groups.google.com/d/msgid/wazuh/ff3b0810-aceb-4f19-8526-324fdd539508n%40googlegroups.com.

Bony V John

unread,
Nov 10, 2025, 1:12:51 AM (23 hours ago) Nov 10
to Wazuh | Mailing List
Hi  hrn.km.a...@gmail.com,

Could you please share your issue in a new post so that we can assist you better in a separate thread and ensure focused troubleshooting for your case?
This will help keep our community discussions organized.

When creating the new post, please provide a detailed description of your issue and include any supporting screenshots, logs, or files that can help us analyze it more effectively.

Thank you!

Reply all
Reply to author
Forward
0 new messages