Package: sploitscan
Version: 0.9.1-3
Severity: normal
Dear maintainer,
I have observed that sometimes sploitscan exits abnormally during
listing Further References:
$ sploitscan CVE-2024-6387
...
┌───[ 📚 Further References ]
|
├ https://access.redhat.com/security/cve/CVE-2024-6387
├ https://bugzilla.redhat.com/show_bug.cgi?id=2294604
└ https://www.qualys.com/2024/07/01/cve-2024-6387/regresshion.txt
Traceback (most recent call last):
File "/usr/bin/sploitscan", line 8, in <module>
sys.exit(cli())
^^^^^
File "/usr/lib/python3/dist-packages/sploitscan/sploitscan.py", line 922,
in cli
main(args.cve_ids, args.export, args.import_file, args.type)
File "/usr/lib/python3/dist-packages/sploitscan/sploitscan.py", line 797,
in main
epss_data["data"][0].get("epss", "N/A")
~~~~~~~~~~~~~~~~~^^^
IndexError: list index out of range
I have tried this earlier today and the two attempts reliably ended with
a stacktrace. However, at this moment it works fine, so it seems to be
related to the data being retrieved. One more notable difference in
the outputs is that before I got "No data found." in the EPSS section,
but now I see the EPSS Score there.
Best wishes,
Tomaxuser
-- System Information:
Debian Release: trixie/sid
APT prefers testing-debug
APT policy: (500, 'testing-debug'), (500, 'testing')
Architecture: amd64 (x86_64)
Foreign Architectures: i386
Kernel: Linux 6.8.12-amd64 (SMP w/4 CPU threads; PREEMPT)
Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8),
LANGUAGE=en_US.UTF-8
Shell: /bin/sh linked to /usr/bin/dash
Init: systemd (via /run/systemd/system)
LSM: AppArmor: enabled
Versions of packages sploitscan depends on:
ii python3 3.11.8-1
ii python3-jinja2 3.1.3-1
ii python3-openai 1.12.0-1
ii python3-requests 2.31.0+dfsg-2
ii python3-tabulate 0.9.0-1
sploitscan recommends no packages.
Versions of packages sploitscan suggests:
ii python3-pygments 2.18.0+dfsg-1
-- no debconf information
