Why need this Task?

Resolve False Positive

Description:

According to Red Hat's https://access.redhat.com/security/cve/cve-2023-44487, nginx is fixed in module nginx:1.20 and 1.22, but not in module 1.24 (wasn't explicitly specified).
Since the CVE matching mechanism in Prisma considers RPM modules, it currently cannot link a scanned nginx included in module 1.24 with any entry in this CVE.

Based on the NVD https://nvd.nist.gov/vuln/detail/CVE-2023-44487, nginx is not fixed in versions <= 1.25.2, and as a result Prisma is reporting it as an unfixed vulnerability since nginx is also considered as an application in Prisma.

Acceptance Criteria: 
We are asking Red Hat to add data to this CVE, specifying a fixed version for the nginx:1.24 RPM module in order to avoid this false positive. Unless Red Hat will be stating that the fix indeed wasn't provided for nginx:1.24