Snare Central v8.6.0 - Nessus Scan Findings

Customers scanning the Snare Central v8.6.0 server with the tenable Nessus, may encounter the following vulnerabilities listed in the Nessus Scan Report.

Critical 33850 Unix Operating System Unsupported Version Detection

According to its self-reported version number, the Unix operating system running on the remote host is no longer supported.

Snare Central v8 is indeed based on Ubuntu 18.04, which is now End of Life.
However, we continue maintaining Ubuntu packages provided by Canonical via the Ubuntu Pro subscription.

We are committed to the security of our products and our customers, and will keep updating Ubuntu packages to address security vulnerabilities.

In parallel, Snare Development Team is working on the future major release Snare Central v9 which will remove the dependency on Ubuntu 18.04.

Medium 182843 Ubuntu 16.04 ESM / 18.04 ESM : libx11 vulnerabilities (USN-6407-2)

The remote Ubuntu 16.04 ESM / 18.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-6407-2 advisory.

Advisory USN-6407-2 states that the fixes of the following three CVEs (CVE-2023-43786, CVE-2023-43785, CVE-2023-43787) are available in libx11-6 package version 2:1.6.4-3ubuntu0.4+esm2
This package is up to date in Snare Central v8.6.0. This can be verified by running a command:

This finding is a false positive.

Any additional vulnerabilities reported after the day of the Snare Central release will be patched in the following releases.

Please do not hesitate to raise a support request if you have any security findings or concerns related to Snare Products.