article 如何确认Prisma云计算中特定CVE的覆盖范围? in 配置和实施 https://live.paloaltonetworks.com/t5/%E9%85%8D%E7%BD%AE%E5%92%8C%E5%AE%9E%E6%96%BD/%E5%A6%82%E4%BD%95%E7%A1%AE%E8%AE%A4prisma%E4%BA%91%E8%AE%A1%E7%AE%97%E4%B8%AD%E7%89%B9%E5%AE%9Acve%E7%9A%84%E8%A6%86%E7%9B%96%E8%8C%83%E5%9B%B4/ta-p/527172 <DIV class="lia-message-template-symptoms-zone"> <DIV class="lia-message-template-symptoms-zone"> <H2>目标</H2> <P><SPAN>&nbsp;如何确认Prisma云计算中特定CVE的覆盖范围?</SPAN></P> </DIV> <DIV class="lia-message-template-diagnosis-zone"> <H2>环境</H2> <P>&nbsp;Prisma Cloud Compute</P> </DIV> <DIV class="lia-message-template-solution-zone"> <H2>步骤</H2> <P><SPAN>&nbsp;你可以通过使用 Console 中的搜索界面来确定 Prisma Cloud 是否为特定的 CVE 提供覆盖。</SPAN><BR /><SPAN>&nbsp;CVE ID的语法是。CVE-YYYY-NNNN</SPAN></P> <P>&nbsp;</P> <P><SPAN>在哪里?</SPAN><BR /><SPAN>&nbsp;CVE --</SPAN><BR /><SPAN>&nbsp;CVE-ID前缀。</SPAN><BR /><SPAN>&nbsp;YYYY --</SPAN><BR /><SPAN>&nbsp;日历年份。</SPAN><BR /><SPAN>&nbsp;NNNN--</SPAN><BR /><SPAN>&nbsp;数字位数。这个字段的长度是可变的,但最小长度是四位数</SPAN></P> <P>&nbsp;</P> <P><SPAN>要搜索一个特定的漏洞。</SPAN><BR />&nbsp;打开控制台,进入 "监控"&gt;"漏洞"&gt;"CVE Viewer"。(Monitor &gt; Vulnerabilities &gt; CVE Viewer)<BR /><SPAN>&nbsp;在右上方的查询文本框中,输入CVE ID(例如CVE-2021-44228)。</SPAN><BR /><SPAN>&nbsp;如果Prisma Cloud覆盖了所查询的漏洞,细节将在结果列表中列出。</SPAN></P> <P>&nbsp;</P> <P><SPAN><STRONG>I.Prisma云计算版(Self-Hosted)控制台。</STRONG></SPAN></P> <P>&nbsp;</P> <P><SPAN>如:</SPAN></P> <P><SPAN>要查看Coverage,请进入 "监控"&gt;"漏洞"&gt;"CVE Viewer"&gt;输入 "CVE-2021-44228"。(Monitor &gt; Vulnerabilities &gt; CVE Viewer &gt; Input "CVE-2021-44228")</SPAN></P> <P>&nbsp;</P> <span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="rtaImage.png" style="width: 784px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/46904i0F55FDE1173EF966/image-dimensions/784x429?v=v2" width="784" height="429" role="button" title="rtaImage.png" alt="rtaImage.png" /></span> <P> </P> <P><STRONG>II.Prisma云企业版(SaaS)控制台。</STRONG></P> <P>&nbsp;</P> <P>如:</P> <P><SPAN>要查看Coverage,请进入计算 &gt; 监控 &gt; 漏洞 &gt; CVE Viewer &gt; 输入 "CVE-2021-44228"(Compute &gt; Monitor &gt; Vulnerabilities &gt; CVE Viewer &gt; Input "CVE-2021-44228")</SPAN></P> <P>&nbsp;</P> <span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="rtaImage.png" style="width: 778px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/46906i3785FECB0BFDF441/image-dimensions/778x438?v=v2" width="778" height="438" role="button" title="rtaImage.png" alt="rtaImage.png" /></span> <P> </P> <P><STRONG>注意:</STRONG><BR /><SPAN>&nbsp;一旦供应商评估他们自己的暴露程度(exposure),执行他们的分析并发布建议,他们就会在他们自己的安全反馈中发布这些攻击响应,然后流入我们的情报流(Intelligence Stream),再由Prisma Cloud Console处理。</SPAN><BR /><SPAN>&nbsp;建议删除为该漏洞添加的任何自定义反馈规则(Custom Feed Rules),以便为您的环境获得最佳结果。</SPAN></P> <P>&nbsp;</P> <P><STRONG>额外信息:</STRONG></P> <P><SPAN>&nbsp;如果你在Prisma云计算中没有看到特定CVE的覆盖范围,请在TAC开一个支持案例。</SPAN></P> <P><SPAN>&nbsp;更多信息请参考<A href="https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin-compute/vulnerability_management/search_cves.html" target="_blank" rel="noopener">https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin-compute/vulnerability_management/search_cves.html</A></SPAN></P> <P><SPAN>&nbsp;关于漏洞浏览器的更多信息,请参考<A href="https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u0000004MfoCAE" target="_blank" rel="noopener">https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u0000004MfoCAE</A></SPAN></P> </DIV> </DIV> Mon, 16 Jan 2023 09:39:03 GMT yishi 2023-01-16T09:39:03Z 如何确认Prisma云计算中特定CVE的覆盖范围? https://live.paloaltonetworks.com/t5/%E9%85%8D%E7%BD%AE%E5%92%8C%E5%AE%9E%E6%96%BD/%E5%A6%82%E4%BD%95%E7%A1%AE%E8%AE%A4prisma%E4%BA%91%E8%AE%A1%E7%AE%97%E4%B8%AD%E7%89%B9%E5%AE%9Acve%E7%9A%84%E8%A6%86%E7%9B%96%E8%8C%83%E5%9B%B4/ta-p/527172 <DIV class="lia-message-template-symptoms-zone"> <DIV class="lia-message-template-symptoms-zone"> <H2>目标</H2> <P><SPAN>&nbsp;如何确认Prisma云计算中特定CVE的覆盖范围?</SPAN></P> </DIV> <DIV class="lia-message-template-diagnosis-zone"> <H2>环境</H2> <P>&nbsp;Prisma Cloud Compute</P> </DIV> <DIV class="lia-message-template-solution-zone"> <H2>步骤</H2> <P><SPAN>&nbsp;你可以通过使用 Console 中的搜索界面来确定 Prisma Cloud 是否为特定的 CVE 提供覆盖。</SPAN><BR /><SPAN>&nbsp;CVE ID的语法是。CVE-YYYY-NNNN</SPAN></P> <P>&nbsp;</P> <P><SPAN>在哪里?</SPAN><BR /><SPAN>&nbsp;CVE --</SPAN><BR /><SPAN>&nbsp;CVE-ID前缀。</SPAN><BR /><SPAN>&nbsp;YYYY --</SPAN><BR /><SPAN>&nbsp;日历年份。</SPAN><BR /><SPAN>&nbsp;NNNN--</SPAN><BR /><SPAN>&nbsp;数字位数。这个字段的长度是可变的,但最小长度是四位数</SPAN></P> <P>&nbsp;</P> <P><SPAN>要搜索一个特定的漏洞。</SPAN><BR />&nbsp;打开控制台,进入 "监控"&gt;"漏洞"&gt;"CVE Viewer"。(Monitor &gt; Vulnerabilities &gt; CVE Viewer)<BR /><SPAN>&nbsp;在右上方的查询文本框中,输入CVE ID(例如CVE-2021-44228)。</SPAN><BR /><SPAN>&nbsp;如果Prisma Cloud覆盖了所查询的漏洞,细节将在结果列表中列出。</SPAN></P> <P>&nbsp;</P> <P><SPAN><STRONG>I.Prisma云计算版(Self-Hosted)控制台。</STRONG></SPAN></P> <P>&nbsp;</P> <P><SPAN>如:</SPAN></P> <P><SPAN>要查看Coverage,请进入 "监控"&gt;"漏洞"&gt;"CVE Viewer"&gt;输入 "CVE-2021-44228"。(Monitor &gt; Vulnerabilities &gt; CVE Viewer &gt; Input "CVE-2021-44228")</SPAN></P> <P>&nbsp;</P> <span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="rtaImage.png" style="width: 784px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/46904i0F55FDE1173EF966/image-dimensions/784x429?v=v2" width="784" height="429" role="button" title="rtaImage.png" alt="rtaImage.png" /></span> <P> </P> <P><STRONG>II.Prisma云企业版(SaaS)控制台。</STRONG></P> <P>&nbsp;</P> <P>如:</P> <P><SPAN>要查看Coverage,请进入计算 &gt; 监控 &gt; 漏洞 &gt; CVE Viewer &gt; 输入 "CVE-2021-44228"(Compute &gt; Monitor &gt; Vulnerabilities &gt; CVE Viewer &gt; Input "CVE-2021-44228")</SPAN></P> <P>&nbsp;</P> <span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="rtaImage.png" style="width: 778px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/46906i3785FECB0BFDF441/image-dimensions/778x438?v=v2" width="778" height="438" role="button" title="rtaImage.png" alt="rtaImage.png" /></span> <P> </P> <P><STRONG>注意:</STRONG><BR /><SPAN>&nbsp;一旦供应商评估他们自己的暴露程度(exposure),执行他们的分析并发布建议,他们就会在他们自己的安全反馈中发布这些攻击响应,然后流入我们的情报流(Intelligence Stream),再由Prisma Cloud Console处理。</SPAN><BR /><SPAN>&nbsp;建议删除为该漏洞添加的任何自定义反馈规则(Custom Feed Rules),以便为您的环境获得最佳结果。</SPAN></P> <P>&nbsp;</P> <P><STRONG>额外信息:</STRONG></P> <P><SPAN>&nbsp;如果你在Prisma云计算中没有看到特定CVE的覆盖范围,请在TAC开一个支持案例。</SPAN></P> <P><SPAN>&nbsp;更多信息请参考<A href="https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin-compute/vulnerability_management/search_cves.html" target="_blank" rel="noopener">https://docs.paloaltonetworks.com/prisma/prisma-cloud/prisma-cloud-admin-compute/vulnerability_management/search_cves.html</A></SPAN></P> <P><SPAN>&nbsp;关于漏洞浏览器的更多信息,请参考<A href="https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u0000004MfoCAE" target="_blank" rel="noopener">https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u0000004MfoCAE</A></SPAN></P> </DIV> </DIV> Mon, 16 Jan 2023 09:39:03 GMT https://live.paloaltonetworks.com/t5/%E9%85%8D%E7%BD%AE%E5%92%8C%E5%AE%9E%E6%96%BD/%E5%A6%82%E4%BD%95%E7%A1%AE%E8%AE%A4prisma%E4%BA%91%E8%AE%A1%E7%AE%97%E4%B8%AD%E7%89%B9%E5%AE%9Acve%E7%9A%84%E8%A6%86%E7%9B%96%E8%8C%83%E5%9B%B4/ta-p/527172 yishi 2023-01-16T09:39:03Z