Update Qualys CSV parser to include CVSSv3.1 data headers (#8702)

Co-authored-by: Felix Hernandez <[email protected]>
DefectDojo · Sep 22, 2023 · 53d3d8d · 53d3d8d
1 parent 0636e9b
commit 53d3d8d
Showing 1 changed file with 14 additions and 6 deletions.
diff --git a/dojo/tools/qualys/csv_parser.py b/dojo/tools/qualys/csv_parser.py
@@ -3,6 +3,7 @@
 import logging
 import re
 from datetime import datetime
+from dateutil import parser
 
 from dojo.models import Endpoint, Finding
 
@@ -114,19 +115,26 @@ def build_findings_from_dict(report_findings: [dict]) -> [Finding]:
         else:
             endpoint = Endpoint(host=report_finding["IP"])
 
+        if "CVSS3 Base" in report_finding:
+            cvssv3 = _extract_cvss_vectors(
+                        report_finding["CVSS3 Base"], report_finding["CVSS3 Temporal"]
+                    )
+        elif "CVSS3.1 Base" in report_finding:
+            cvssv3 = _extract_cvss_vectors(
+                        report_finding["CVSS3.1 Base"], report_finding["CVSS3.1 Temporal"]
+                    )
+
         finding = Finding(
             title=f"QID-{report_finding['QID']} | {report_finding['Title']}",
             mitigation=report_finding["Solution"],
             description=f"{report_finding['Threat']}\nResult Evidence: \n{report_finding.get('Threat', 'Not available')}",
             severity=severity_lookup.get(report_finding["Severity"], "Info"),
             impact=report_finding["Impact"],
-            date=datetime.strptime(
-                report_finding["Last Detected"], "%m/%d/%Y %H:%M:%S"
-            ).date(),
-            vuln_id_from_tool=report_finding["QID"],
-            cvssv3=_extract_cvss_vectors(
-                report_finding["CVSS3 Base"], report_finding["CVSS3 Temporal"]
+            date=parser.parse(
+                report_finding["Last Detected"].replace("Z", "")
             ),
+            vuln_id_from_tool=report_finding["QID"],
+            cvssv3=cvssv3
         )
 
         cve_data = report_finding.get("CVE ID")