Just wondering, does anyone noticed that when generating a report based on CSV using either the default “Basic Vulnerability Check” template or a custom CSV template created from the Reports Tab of the security console yields duplicate entries when a vulnerability found has multiple instances?
Suppose, you have this vulnerability which has two instances on an asset: Adobe Flash Player: APSB15-28 (CVE-2015-7652): Security updates available for Adobe Flash Player
Then when you generate a CSV report from the aforementioned template, you’ll have this entry in your CSV report.
So if a specific vulnerability has more than 2 instances then you will have the exact same number of entries in your CSV report.
Is it supposed to be like that at all? I kind of taking a lot of time checking and deleting the duplicate entries that it become a hassle.
There’s indeed another way I found which is to go directly to the vulnerability page of that asset then do an “Export to CSV” but this doesn’t conform to the process in place wherein as long as the scan is done it will trigger the Recurring report to run.
Hope to get anyone’s input on this. Thanks!