Looks like security part of ZENWorks has hard times again ( Antimalware updates ... ) , CVE feed doesn't work. They https://www.nist.gov/itl/nvd changed something recently and talking about updating of schema files ..
David
Cybersecurity
DevOps Cloud
IT Operations Cloud
If an answer to your question is correct, click on "Verify Answer" under the "More" button. The answer will now appear with a checkmark. Please be sure to always mark answers that resolve your issue as verified. Your fellow Community members will appreciate it! Learn more
Looks like security part of ZENWorks has hard times again ( Antimalware updates ... ) , CVE feed doesn't work. They https://www.nist.gov/itl/nvd changed something recently and talking about updating of schema files ..
David
Actually, there appears to be ongoing Denial of Service issues on the NIST Site causing intermittent 503 errors. If you retry the update manually a few times it should go through. I presume NIST is working to address the root cause of issues seen on their site.
From your own link.....
"We are aware of availability issues with the NVD API Endpoints and are working to resolve them."
--
If you found this post useful, give it a “Like” or click on "Verify Answer" under the "More" button
Be sure to "Like" My (and a few others) Cool Solutions below!
https://community.microfocus.com/members/craigdwilson/bookmarks
Actually, there appears to be ongoing Denial of Service issues on the NIST Site causing intermittent 503 errors. If you retry the update manually a few times it should go through. I presume NIST is working to address the root cause of issues seen on their site.
From your own link.....
"We are aware of availability issues with the NVD API Endpoints and are working to resolve them."
--
If you found this post useful, give it a “Like” or click on "Verify Answer" under the "More" button
Be sure to "Like" My (and a few others) Cool Solutions below!
https://community.microfocus.com/members/craigdwilson/bookmarks
And "please ensure that you or the tools you use have the latest schema files, which were recently updated" , are we updated ?
David
Hi Craig, I am having this issue with CVE subscription. In the web interface, I get a success return, but in the loader-messages.log I get the following (one of the entries in a full run as I tried to recreate the subscription after the fails):-
Error downloading CVE data for URL https://services.nvd.nist.gov//rest/json/cves/2.0/?lastModStartDate=2024-07-02T12:00:00Z&lastModEndDate=2024-10-30T12:00:00Z&noRejected&resultsPerPage=1&startIndex=0
I've tried lots of times, even registered for an API key but still no joy. I see mention of a schema file, do I need to download and make that available on the zenworks primary in question?
Running 23.4
I get this on a fresh install in a test environment too, same version. I can download content using wget from the nist site on the zenworks server.
Jon