The current document offers insight and solutions to the issue of the incorrect OS finding associated with a device in Footprint. This may occur whenever the scanning process that runs on the device is not optimal in terms of accuracy, however the fix is easy to implement.
Firstly, the user may consider running Authenticated Agentless scanning or Agent-based scanning as these are the most accurate methods of scanning. Detailed steps on setting up those types of scans can be found here:
[1] Authenticated Agentless Scanning
You may also choose the OS manually and this solution does not require any change in the Scan Type. The user needs to find the Devices affected by this problem and, by going to the affected Device’s page > Applications and then the incorrect Application associated with the device. There, the user should interact with the Edit Element button and pick the correct version of the application (known as CPE):
Note: The button is only visible on Application Level
You should be presented with the “Edit Element CPE” dialogue box:
Here you may enter the CPE Associated with the actual OS/Application Version found on the Device. Of course you can check this by any means recommended by the application’s vendor.
For Windows: Command Prompt and enter > winver command.
For Linux it can be multiple options but usually cat /etc/release or uname -a
For other Applications it can be found in > Help > About.
An example of a valid CPE associated with the Windows 11 Operating System is : cpe:2.3:o:microsoft:windows_11_21h2:10.0.22000.739:*:*:*:*:*:x64:*
References: https://nvd.nist.gov/products/cpe
Comments
0 comments
Please sign in to leave a comment.