Summary
The customer faces an issue where the product status in Software Vulnerability Manager is incorrect.
Cause
Diagnoses
MySQL -u root -p
Use vuln_track;
SELECT os_soft_id FROM os_soft WHERE os_soft_name LIKE 'put product name here';
SELECT * FROM vuln_track.sr_match_files WHERE product_id =put product ID here;
Please note: If the above query doesn’t provide a result, this means the product detection rule is not available in the vulnerability database for tracking and issuing an advisory.
MySQL -u root -p
Use vuln_track;
select MAX(vuln_create_date) from vuln_track.vuln;
Please note: If the above query doesn’t provide a current date and shows an old date, this means the Vulnerability Database hasn’t been synced.
https://community.flexera.com/t5/Software-Vulnerability-Manager/Coffee-Break-Series-1-Checking-the-Vulnerability-Database-is-up/ta-p/169096
Solution
Product detection rule is not available.
The customer needs to suggest the software via his SVM cloud portal, so the Flexera File Signature team can add the product to the database for tracking and detection rule.
SVM > Configuration > Suggest Software
Vulnerability Database hasn't been synced with Flexera SVM backend
If the public IP has been changed and Flexera SVM backend whitelisted public IP is old then the Vulnerability database will not get the latest vulnerability information
Dec 01, 2020 03:00 AM - edited Dec 03, 2020 02:55 AM