I am a new nessus users and just finished scanning some servers using nesseus WX. I saved the results into .txt, .csv and html and have the following questions about "severity":
1. How is severity determined?
2. The severity is either high or low. Is there a medium?
3. How do I modify the program if I want to change the severity associated with a security hole?
4. If the results are saved as a report (.txt file), some security holes have serverity values (high, low ).
If the results are saved as a .csv file, there is no severity column but there is a column with values "Info", "Report" and "".
If the results are saved as a .html file, there is a severity column with "Info", "High" and "Low".
Any explanation of differences?
Thanks.
Huihsing Fu
Avaya Inc.
