How do we overcome the detection of QID 45114 (BlindElephant) while using the Free Version of Qualys WAS. Not detected the same in the customer's enterprise version of qualys application.
QID 45114 is an IG QID that reports detected web applications and plugins. As such, there isn't a remediation available because it isn't a vulnerability.
On a side note, you should get consistent scan results across both versions unless you customize your scan or apply some filters.
Hi Shyam Raj,
Earlier Submitted the Qualys Vulnerability report (Free Scan) at Customer end which has the details of QID 45114 - Web Application and Plugins Detection based onopen-source project Blind Elephant.
Now the customer's approaching us to close that detection as listed in the report submitted with remediation details.
As per your side note, how do we apply some filters or customize our scan to bypass the blindelephant detection?
Advise us how do we reply back the customer with a positive response in this regard.
Note: No such application's used in our website application/server environment based on assumptions of QID 45114.
If you'd like to filter this QID, you may use Search Lists while scanning.
Here's a video that'll walk you through: https://vimeo.com/album/3651237/video/145344658 and https://vimeo.com/album/3651237/video/260486521
Please also consider attending a Qualys training where these concepts are discussed in great detail - qualys.com/training
If you think Qualys has incorrectly flagged this QID, please open a support ticket for investigation.
I recommend that you use Qualys Community Edition, a free version of the Qualys Cloud Platform that includes web application scanning functionality. It includes unlimited scanning of up to 16 internal assets, three external assets and one web application URL. Users receive one virtual appliance for scanning non-public-facing assets.
If you need a single console for managing multiple client engagements simultaneously, then switch to Qualys Consulting Edition.
Hi Robert & Shyam,
I accept your opinions and recommendations regarding the query raised from my end for further proceedings in future.
But here my exact requirement for the previous scan report submitted at customer end.
Can we say to the customer that this QID 45114 is just an assumption not a confirmity of vulnerability detection by Qualys on our web application.
This information gathering issue raised as issue ticket with Qualys community support and got this communication from their end.
So further remediation steps not required in our web application level.
Retrieving data ...