🎉 Add vulnerability Id to ssh-audit (#10979)

manuel-sommer · web-flow · commit e22cb38e92e2 · 2024-10-03T17:36:15.000-05:00
diff --git a/dojo/tools/ssh_audit/parser.py b/dojo/tools/ssh_audit/parser.py
@@ -53,6 +53,8 @@ def get_findings(self, filename, test):
                         description="\n".join(description),
                         severity=severity,
                         static_finding=False)
+                finding.unsaved_vulnerability_ids = []
+                finding.unsaved_vulnerability_ids.append(cvename)
                 items.append(finding)
                 finding.unsaved_endpoints = []
                 endpoint = Endpoint(host=data["target"].split(":")[0], port=data["target"].split(":")[1])
diff --git a/unittests/tools/test_ssh_audit_parser.py b/unittests/tools/test_ssh_audit_parser.py
@@ -17,6 +17,7 @@ def test_parse_file_with_many_vuln_has_many_findings(self):
             self.assertEqual(findings[1].title, "SSH-2.0-OpenSSH_7.9p1 Debian-10+deb10u2_CVE-2020-15778")
             self.assertEqual(findings[0].severity, "High")
             self.assertEqual(findings[13].severity, "Medium")
+            self.assertEqual("CVE-2021-41617", findings[0].unsaved_vulnerability_ids[0])
 
     def test_parse_file_with_many_vuln_has_many_findings2(self):
         with open("unittests/scans/ssh_audit/many_vulns2.json", encoding="utf-8") as testfile:
