OpenVAS-Client PreferencesReportsReport FormatsChanging severities of reported issues

Changing severities of reported issues

With an OpenVAS-Client version 2.0.3 or higher, the severity of reported issues (e.g. "Security Hole") is tunable. To do this "Severity Overrides" have to be defined. This feature can be used to mark "False Positives" (e.g. faulty NVTs or deliberately open ports), but it can also be used to increase the severity of reported issues (e.g. because running an apache on a classified machine is extra bad).

Severity overrides are organized in a severity filter. The filter is off by default. It can be switched on or off in the "Report" Menu (item "Override Severities"/ "Undo Severity Overrides") on a per-report basis. Reports for which the filter is active are highlighted by an icon as can be seen in the screenshot.

Screenshot of OpenVAS-Client 2.0.3 showing the same report filtered and unfiltered and the dialog to add a severity override.
Screenshot of OpenVAS-Client 2.0.3 showing the same report filtered and unfiltered and the dialog to add a severity override.

Severity overrides are created via the context menu that opens on a right mouse button click in the tree view of the reported issues. Selecting the "Severities..." menu item will open a window where the issue can be selected and a new severity and reason for the change can be specified. Clicking the "Add override to filter" button will save this severity override and add it to the filter. In the tree, a different icon will indicate that an issue has an user-assigned severity and a notice is added to the text area.


OpenVAS-Client PreferencesReportsReport FormatsChanging severities of reported issues