Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

🐛 fix nessus severity #9549

Merged
merged 3 commits into from
Feb 20, 2024

flake8

46e0ff1
Select commit
Loading
Failed to load commit list.
Merged

🐛 fix nessus severity #9549

flake8
46e0ff1
Select commit
Loading
Failed to load commit list.
DryRunSecurity / Sensitive Functions Analyzer succeeded Feb 14, 2024 in 0s

DryRun Security

Details

Potentially Sensitive Functions: 1 detected

⚠️ Sensitive Function dojo/tools/tenable/xml_format.py (click for details)
Type Sensitive Function
Description The function 'get_cvss_severity' is related to authorization or authentication because it converts data into severity, which is a crucial step in determining the level of access a user has.
File Name dojo/tools/tenable/xml_format.py
Function Name get_cvss_severity
Code Link

django-DefectDojo/dojo/tools/tenable/xml_format.py

Lines 28 to 45 in 46e0ff1

return severity
def get_cvss_severity(self, cvss_score):
"""Convert data of the report into severity"""
severity = "Info"
if float(cvss_score) >= 9.0:
severity = "Critical"
elif float(cvss_score) >= 7.0:
severity = "High"
elif float(cvss_score) >= 5.0:
severity = "Medium"
elif float(cvss_score) > 0.0:
severity = "Low"
else:
severity = "Info"
return severity
def safely_get_element_text(self, element):
View more details on DryRunSecurity