Hi All! Dealing with a time sensitive (issue). The ACAS guy on my team is running scans in our environment. When he pulls the .Nessus files, and I use Vulnerator or eMASSter, it doesn't create an POAM ouput. Under details, it shows that there are findings, but under CAT severity listings, it says 0, but there are findings.

We looked at plugin results online in ACAS and they are showing. But eMASSter/Vulernator do not spit out results. I have updated to the lastest form of the tools. And we are pushing the latest ACAS engine/plugin updates now (6 months old i think).

I am thinking it is either a settings issue? I've some a good majority of the IPs targeted show as non-credentialed in the eMASSter report, but looks different in ACAS.

Has anyone seen similar problems? On ACAS 6.1.6.

Thanks you from one confused cyber guy.