====== Pandora FMS Vulnerability Database ======

{{indexmenu_n>54}}

<wrap #ks1 />
===== Introduction =====

Pandora FMS has [[:en:documentation:pandorafms:cybersecurity:30_vulnerabilities|the ability to detect vulnerabilities]] in software that is already being monitored. For this, it requires specialized information regarding the operating systems and their multiple installed applications.

This section provides instructions on how to integrate and update each installed instance of Pandora FMS for this purpose.

<wrap #ks2 />
===== Download Information =====

The vulnerability database packages can currently be found here:

<WRAP center round download 90%>

https://packages.pandorafms.com/09fee0f1c66c203ff8a2feffbb619f18/

</WRAP>

Brief explanation of each available file:

  * ''BUILDS'' directory: These are incremental packages. Each package marked with a build date complements the files with respect to the previous build.
  * ''package_edge.vdb'': This is the //lightest package// of the vulnerability database (last ''2'' years of vulnerabilities).
  * ''package_lite.vdb'': This is the intermediate package of the vulnerability database (last ''5'' years of vulnerabilities). **This is the package distributed by default with the Pandora FMS server**.
  * ''package_full.vdb'': This is the **complete** package of the vulnerability database.

<wrap #ks3 />
===== Installation =====

The ''.vdb'' packages are ZIP-type packages that must be extracted (using the **unzip** command) into the directory where the server files are located, which by default is:

<file>
/usr/lib/perl5/PandoraFMS/Vulnerabilities.
</file>

To do so, it must be executed with the appropriate privileges, depending on each case, as follows:

  * If the light package was downloaded:

<code bash>
unzip -q -o "package_edge.vdb" -d "/usr/lib/perl5/PandoraFMS/Vulnerabilities"
</code>

  * If the intermediate package was downloaded:

<code bash>
unzip -q -o "package_lite.vdb" -d "/usr/lib/perl5/PandoraFMS/Vulnerabilities"
</code>

  * If the **complete** package was downloaded:

<code bash>
unzip -q -o "package_full.vdb" -d "/usr/lib/perl5/PandoraFMS/Vulnerabilities"
</code>

  * If a ''BUILD'' package was downloaded:

<code bash>
unzip -q -o "package_build_YYYYMMDD.vdb" -d "/usr/lib/perl5/PandoraFMS/Vulnerabilities"
</code>

//Where// ''YYYYMMDD'' //is the full year, month, and day corresponding to the cumulative difference// (they must be applied in chronological order).

<wrap #ks4 />
===== Addendum =====

<WRAP center round info 90%>

A restart of the Pandora FMS Server is not necessary for the new vulnerability database files to be considered.

</WRAP>

//In a future version of PFMS, a system for updating the vulnerability database from the web Console itself will be implemented//.

[[:en:documentation:pandorafms:start|←Back to Pandora FMS documentation index]]