Microsoft Defender for Cloud, Container registry images should have vulnerability findings resolved, missing CVE attribute

Michael Schnider 5 Reputation points
2023-03-29T05:30:25.07+00:00

Hi,

Microsoft Defender for Cloud has a recommendation, "Container registry images should have vulnerability findings resolved." where all the vulnerabilities (CVEs) in container images get listed. Normally all these entries have a list (1:n) of references to CVE on https://cve.mitre.org/. Since a few days, the relation switched to (0:n), and many existing entries lost the reference to the CVEs. I know this because I have software which loads this so-called "SecuritySubAssessment" via the java SDK. Does somebody have an idea why this happened?

Edit:

After more analyses, it looks like it's somehow connected to the property "Vendor references" under "Additional information". In all cases where a CVE is set, there is also a "Vendor references" set.

On the other hand, if no CVE reference is set, only < 1% of the findings have a "Vendor references" set...

Azure Container Registry
Azure Container Registry
An Azure service that provides a registry of Docker and Open Container Initiative images.
446 questions
Microsoft Defender for Cloud
Microsoft Defender for Cloud
An Azure service that provides threat protection for workloads running in Azure, on-premises, and in other clouds. Previously known as Azure Security Center and Azure Defender.
1,348 questions
{count} votes

1 answer

Sort by: Most helpful
  1. Mohammed Altamash Khan 2,086 Reputation points
    2023-03-29T05:37:31.9666667+00:00

    Hi

    When you see the list of FINDINGS

    There is category option which may have PREVIEW - for this kind , CVE reference is no there.

    I think its in preview thats why. Other than all seem normal.

    Please "Accept the answer" if the information helped you. This will help us and others in the community as well.

    User's image


Your answer

Answers can be marked as Accepted Answers by the question author, which helps users to know the answer solved the author's problem.