Uploaded image for project: 'Red Hat Advanced Cluster Security'
  1. Red Hat Advanced Cluster Security
  2. ROX-28895

Image vuln counts do not match data in summary cards when "unknown" severity

XMLWordPrintable

    • Icon: Bug Bug
    • Resolution: Done
    • Icon: Undefined Undefined
    • None
    • None
    • None
    • None
    • Quality / Stability / Reliability
    • False
    • Hide

      None

      Show
      None
    • False

      When an image is viewed in Vulnerability Management -> Results -> Workload CVEs, if the image contains CVEs that are listed as "Unknown" severity the counts above the CVE table will not match those listed in the summary cards above.

      This is because the summary cards are building count data from the ResourceCountByCVESeverity resolver, which includes CVE counts broken down by critical, important, moderate, and low severities - but not 'unknown'.

      This can be seen in staging https://staging.demo.stackrox.com/main/vulnerabilities/user-workloads/images/sha256:52478f8cd6a142fd462f0a7614a7bb064e969a4c083648235d6943c786df8cc7?vulnerabilityState=OBSERVED&detailsTab=Vulnerabilities&page=8 (data may change over time).

        1. image-2025-04-09-13-05-29-746.png
          image-2025-04-09-13-05-29-746.png
          88 kB

              rh-ee-dashrews David Shrewsberry
              rh-ee-dvail David Vail
              ACS Core Workflows
              Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

                Created:
                Updated:
                Resolved: