Hi there!
Can someone tell me how Rapid7 counts vulnerabilities? I have many cases where numbers are different. Example below:
In dashboards (asset details) shows 6 vulnerabilities
but in the same view on the right hand site where are details I have only 5 records (below graph) 1 critical, 3 severe, 1 moderate.
When I go to site scan summary I have 6 vulnerabilities:
Also in details I have 6 vulns with shown instances:
But in email notification from that scan I have another different values:
And in the end in audit report from that site I have on the beginning 6 vuln, but in HTTPS 8 vulns…(?).
and in section 3. Discovered and Potential Vulnerabilities - there are only 5! 1 critical, 3 severe, 1 moderate.
I am really confused what is correct…