Any tip on why it is happening? there is no firewall preventing the scanning....and I can see the website's links are being crawled, but after the scan finish, there is no severity.
any tip on that?
It's possible that there are no vulnerabilities on that web app. You might want to try a different option profile and use "Everything" detection scope. But if you still think something is wrong, I would open a case with Qualys Support. There's no way to figure it out here.
Make sure you are running a vulnerability scan, not a discovery scan. Discovery scan does only the crawling part.
thanks. I did. Usually I do discovery scan and then vulnerability scan. I wondering if this behavior is caused by something at vendor side (any infrastructure blocker) or anything at Qualys side. (I have no clue from Qualys scan report).
Any idea about this?
Retrieving data ...