https://live.paloaltonetworks.com/t5/next-generation-firewall/including-cve-in-threat-logs/m-p/576334#M2596 <P>Hello&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/616807507">@BenBrewerLCE</a>,</P> <P>&nbsp;</P> <P>Thank you for your feedback. Feature requests can be submitted by your SE. Please get in touch with your account team to have this added.&nbsp;<SPAN>You'll send them all the details about the feature in question, and they'll take the necessary steps to have a Feature Request created for you. They will then give you a Feature Request ID (FRID).&nbsp;&nbsp;</SPAN></P> Tue, 06 Feb 2024 23:22:13 GMT zahmed01 2024-02-06T23:22:13Z https://live.paloaltonetworks.com/t5/next-generation-firewall/including-cve-in-threat-logs/m-p/576326#M2595 <P>For as long as the Palo Threat feature has been around, I can't believe this feature doesn't already exist.</P> <P>&nbsp;</P> <P>Would it be possible for Palo to include the associated CVE as a field next to the ThreatID?&nbsp; These mapps occur outside of the Firewall as part of the ThreatDB or Content Update emails, but not locally on the Firewall itself.</P> <P>&nbsp;</P> <P>It would simply things for customer to just include the CVE right in the syslog message as an additional field.</P> <P>&nbsp;</P> <P>This would open up many opportunities for customers to correlate against vulnerability scan data and threat intelligence within their SIEM.</P> <P>&nbsp;</P> <P>Thanks!</P> Tue, 06 Feb 2024 21:17:48 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/including-cve-in-threat-logs/m-p/576326#M2595 BenBrewerLCE 2024-02-06T21:17:48Z https://live.paloaltonetworks.com/t5/next-generation-firewall/including-cve-in-threat-logs/m-p/576334#M2596 <P>Hello&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/616807507">@BenBrewerLCE</a>,</P> <P>&nbsp;</P> <P>Thank you for your feedback. Feature requests can be submitted by your SE. Please get in touch with your account team to have this added.&nbsp;<SPAN>You'll send them all the details about the feature in question, and they'll take the necessary steps to have a Feature Request created for you. They will then give you a Feature Request ID (FRID).&nbsp;&nbsp;</SPAN></P> Tue, 06 Feb 2024 23:22:13 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/including-cve-in-threat-logs/m-p/576334#M2596 zahmed01 2024-02-06T23:22:13Z https://live.paloaltonetworks.com/t5/next-generation-firewall/including-cve-in-threat-logs/m-p/576462#M2600 <P>Hi&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/616807507">@BenBrewerLCE</a>&nbsp;,</P> <P>&nbsp;</P> <P>As&nbsp;<a href="https://live.paloaltonetworks.com/t5/user/viewprofilepage/user-id/138221">@zahmed01</a>&nbsp;mentioned you'll have to go through your local SE to have a FR created.&nbsp; Once you have the FR# you and everyone else interested can add their vote to it via their local SE in order to give it more traction.</P> <P>&nbsp;</P> <P>Kind regards,</P> <P>-Kim.</P> Wed, 07 Feb 2024 15:25:57 GMT https://live.paloaltonetworks.com/t5/next-generation-firewall/including-cve-in-threat-logs/m-p/576462#M2600 kiwi 2024-02-07T15:25:57Z