I’m scanning for vulnerabilities with OpenVAS (GVM) from a Kali VM to a Debian 10.6 in an internal network through virtualbox.
The target is a Debian 10.6 (text-mode) and the vulnerability I’ve found has to do with “missing kernel mitigations for speculative store bypass”.
I’ve updated my kernel from 4.19 to 5.9 and the intel microcode (in the vm), I also tried forcefully enabling spec_store_bypass in /etc/default/grub (not sure about this, also put mitigations=on)
When I check /sys/devices/system/cpu/vulnerabilities/spec_store_bypass on the target it still shows as “vulnerable” and upon scanning it with openvas on kali the same thing happens.
I don’t know what to do anymore, any help is appreciated.