Pandora FMS Vulnerability Database

Introduction

Pandora FMS has the ability to detect vulnerabilities in software that is already being monitored. For this, it requires specialized information regarding the operating systems and their multiple installed applications.

This section provides instructions on how to integrate and update each installed instance of Pandora FMS for this purpose.

Download Information

The vulnerability database packages can currently be found here:

https://packages.pandorafms.com/09fee0f1c66c203ff8a2feffbb619f18/

Brief explanation of each available file:

  • BUILDS directory: These are incremental packages. Each package marked with a build date complements the files with respect to the previous build.
  • package_edge.vdb: This is the lightest package of the vulnerability database (last 2 years of vulnerabilities).
  • package_lite.vdb: This is the intermediate package of the vulnerability database (last 5 years of vulnerabilities). This is the package distributed by default with the Pandora FMS server.
  • package_full.vdb: This is the complete package of the vulnerability database.

Installation

The .vdb packages are ZIP-type packages that must be extracted (using the unzip command) into the directory where the server files are located, which by default is: 

/usr/lib/perl5/PandoraFMS/Vulnerabilities.

To do so, it must be executed with the appropriate privileges, depending on each case, as follows:

  • If the light package was downloaded:
unzip -q -o "package_edge.vdb" -d "/usr/lib/perl5/PandoraFMS/Vulnerabilities"
  • If the intermediate package was downloaded:
unzip -q -o "package_lite.vdb" -d "/usr/lib/perl5/PandoraFMS/Vulnerabilities"
  • If the complete package was downloaded:
unzip -q -o "package_full.vdb" -d "/usr/lib/perl5/PandoraFMS/Vulnerabilities"
  • If a BUILD package was downloaded:
unzip -q -o "package_build_YYYYMMDD.vdb" -d "/usr/lib/perl5/PandoraFMS/Vulnerabilities"

Where YYYYMMDD is the full year, month, and day corresponding to the cumulative difference (they must be applied in chronological order).

Addendum

A restart of the Pandora FMS Server is not necessary for the new vulnerability database files to be considered.

In a future version of PFMS, a system for updating the vulnerability database from the web Console itself will be implemented.

←Back to Pandora FMS documentation index