🐛 Fix tenable CWE #13245 (#13252)

* 🐛 Fix tenable CWE #13245

* update

* update

Author: manuel-sommer

dojo/tools/tenable/xml_format.py

@@ -239,8 +239,11 @@ def get_findings(self, filename: str, test: Test) -> list:
                     cwe_element_text = self.safely_get_element_text(
                         item.find("cwe"),
                     )
+
                     if cwe_element_text is not None:
-                        cwe = cwe_element_text
+                        match = re.search(r"\d+", cwe_element_text)
+                        if match:
+                            cwe = int(match.group())
 
                     # parsing and storing the CWE would affect dedupe/hash_codes, commentint out for now
                     # if not cwe:

unittests/scans/tenable/nessus/nessus_with_cwe-.nessus

@@ -195,6 +195,16 @@ def test_parse_some_findings_with_cvssv3_nessus_legacy(self):
             self.assertEqual("http", endpoint.protocol)
             self.assertEqual("CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N", finding.cvssv3)
 
+    def test_parse_some_findings_with_nessus_with_cwe(self):
+        with (get_unit_tests_scans_path("tenable/nessus") / "nessus_with_cwe-.nessus").open(encoding="utf-8") as testfile:
+            parser = TenableParser()
+            findings = parser.get_findings(testfile, self.create_test())
+            for finding in findings:
+                for endpoint in finding.unsaved_endpoints:
+                    endpoint.clean()
+            finding = findings[0]
+            self.assertEqual(94, finding.cwe)
+
     def test_parse_many_findings_xml_nessus_was_legacy(self):
         with (get_unit_tests_scans_path("tenable/nessus_was") / "nessus_was_many_vuln.xml").open(encoding="utf-8") as testfile:
             parser = TenableParser()