Hello all,
We have been experiencing an issue with InsightVM regarding old kernel files stored on the server.
InsightVM reports vulnerabilities for the kernels that’s not even installed on the system but just exists under /boot directory.
To give an example, I scanned one of our servers before removing the old kernel files and the amount of vulnerabilities found waas 148.
I removed the old kernel files and scanned with the same policy again and the amount was 19.
It’s good practice to keep one previous kernel on the system in case things go wrong, but the numbers are not accurate.
Is there a way to eliminate this or tell InsightVM to scan only the current installed kernel on the system?
Thanks.