article 如何在Prisma云计算中通过漏洞或CVEs过滤images? in 配置和实施 https://live.paloaltonetworks.com/t5/%E9%85%8D%E7%BD%AE%E5%92%8C%E5%AE%9E%E6%96%BD/%E5%A6%82%E4%BD%95%E5%9C%A8prisma%E4%BA%91%E8%AE%A1%E7%AE%97%E4%B8%AD%E9%80%9A%E8%BF%87%E6%BC%8F%E6%B4%9E%E6%88%96cves%E8%BF%87%E6%BB%A4images/ta-p/526480 <DIV class="lia-message-template-symptoms-zone"> <DIV class="lia-message-template-symptoms-zone"> <H2>目标</H2> <P><SPAN>如何在Prisma云计算中通过漏洞或CVEs过滤images?</SPAN></P> </DIV> <DIV class="lia-message-template-diagnosis-zone"> <H2>环境</H2> <P><SPAN>Prisma云计算版&nbsp;(Self-Hosted)</SPAN><BR /><SPAN>Prisma云企业版(SaaS)</SPAN></P> </DIV> <DIV class="lia-message-template-solution-zone"> <H2>步骤</H2> <P><SPAN>“Vulnerability Explorer”有助于调查整个环境中的漏洞,并根据特定的CVE过滤images。</SPAN></P> <P>&nbsp;</P> <P><STRONG>Prisma云计算版(Self-Hosted)控制台。</STRONG></P> <P><SPAN>&nbsp;进入 "监控"&gt;"漏洞"&gt;"漏洞浏览器"&gt;输入感兴趣的CVE(例如:CVE-2021-21687)。</SPAN></P> <P><SPAN>&nbsp;Monitor &gt; Vulnerabilities &gt; Vulnerability Explorer &gt; Input the&nbsp;CVE</SPAN></P> <span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="rtaImage.png" style="width: 577px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/46891i1959D77243B1C846/image-dimensions/577x173?v=v2" width="577" height="173" role="button" title="rtaImage.png" alt="rtaImage.png" /></span> <P><SPAN>&nbsp;过滤后的列表可以以CSV格式下载。</SPAN><BR /><SPAN>&nbsp;点击条目列表中的任何地方(在标签--风险分数、CVE风险因素、环境风险因素或受影响包下),以获得受该CVE影响的images。</SPAN><BR /><SPAN>&nbsp;如下图所示,2个images受到CVE-2021-21687的影响</SPAN></P> <span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="rtaImage.png" style="width: 673px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/46892i6AD39E2D325E95EE/image-dimensions/673x307?v=v2" width="673" height="307" role="button" title="rtaImage.png" alt="rtaImage.png" /></span> <P>&nbsp;</P> <P><STRONG>Prisma云企业版(SaaS)控制台:</STRONG></P> <P><SPAN>&nbsp;进入 "计算"&gt;"监控"&gt;"漏洞"&gt;"漏洞浏览器"&gt;输入感兴趣的CVE(例如:CVE-2021-41990)。</SPAN></P> <P><SPAN>&nbsp;Compute &gt; Monitor &gt; Vulnerabilities &gt; Vulnerability Explorer &gt; Input the&nbsp;CVE</SPAN></P> <span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="rtaImage.png" style="width: 687px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/46893i2EB8D72A05401B0F/image-dimensions/687x260?v=v2" width="687" height="260" role="button" title="rtaImage.png" alt="rtaImage.png" /></span></DIV> <DIV class="lia-message-template-solution-zone"><SPAN>&nbsp;过滤后的列表可以以CSV格式下载。</SPAN> <P><SPAN>&nbsp;点击条目列表中的任何地方(在标签--风险分数、CVE风险因素、环境风险因素或受影响包下)以获得受该CVE影响的images。</SPAN><BR /><SPAN>&nbsp;如下图所示,1个image受到CVE-2021-41990的影响。</SPAN></P> <span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="rtaImage.png" style="width: 687px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/46894iBF89101C40132D7C/image-dimensions/687x280?v=v2" width="687" height="280" role="button" title="rtaImage.png" alt="rtaImage.png" /></span> <P><SPAN>&nbsp;关于漏洞浏览器的视频教程,请参考<A href="https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000HAg8CAG" target="_blank" rel="noopener">Video Tutorial: What Does Vulnerability Explorer Accomplish Within Prisma Cloud?</A></SPAN></P> <P>&nbsp;</P> <P><SPAN>额外信息</SPAN></P> <P><SPAN>注意:</SPAN></P> <P><SPAN>&nbsp;目前,在Monitor &gt; Vulnerabilities&nbsp;&gt; Images下,images只能通过某些关键词和属性进行过滤,而不是通过特定的CVE进行过滤,如下图所示。</SPAN></P> <span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="rtaImage.png" style="width: 733px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/46895iDEF961AB1104B626/image-dimensions/733x294?v=v2" width="733" height="294" role="button" title="rtaImage.png" alt="rtaImage.png" /></span> <P> </P> <span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="rtaImage.png" style="width: 733px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/46896i840628332373CA7C/image-dimensions/733x253?v=v2" width="733" height="253" role="button" title="rtaImage.png" alt="rtaImage.png" /></span> <P><SPAN>&nbsp;以下是为在 Monitor &gt; Vulnerabilities &gt; Images下添加CVE漏洞过滤器而提出的功能请求,目前没有ETA。</SPAN><BR /><SPAN>1、在image细节中添加额外的过滤器。<A href="https://prismacloud.ideas.aha.io/ideas/PANW-I-3012" target="_blank" rel="noopener">PANW-I-3012</A></SPAN><BR /><SPAN>2、在控制台界面的CI image扫描报告中添加CVE过滤器。<A href="https://prismacloud.ideas.aha.io/ideas/PANW-I-2959" target="_blank" rel="noopener">PANW-I-2959</A></SPAN></P> </DIV> </DIV> Tue, 10 Jan 2023 07:54:41 GMT yishi 2023-01-10T07:54:41Z 如何在Prisma云计算中通过漏洞或CVEs过滤images? https://live.paloaltonetworks.com/t5/%E9%85%8D%E7%BD%AE%E5%92%8C%E5%AE%9E%E6%96%BD/%E5%A6%82%E4%BD%95%E5%9C%A8prisma%E4%BA%91%E8%AE%A1%E7%AE%97%E4%B8%AD%E9%80%9A%E8%BF%87%E6%BC%8F%E6%B4%9E%E6%88%96cves%E8%BF%87%E6%BB%A4images/ta-p/526480 <DIV class="lia-message-template-symptoms-zone"> <DIV class="lia-message-template-symptoms-zone"> <H2>目标</H2> <P><SPAN>如何在Prisma云计算中通过漏洞或CVEs过滤images?</SPAN></P> </DIV> <DIV class="lia-message-template-diagnosis-zone"> <H2>环境</H2> <P><SPAN>Prisma云计算版&nbsp;(Self-Hosted)</SPAN><BR /><SPAN>Prisma云企业版(SaaS)</SPAN></P> </DIV> <DIV class="lia-message-template-solution-zone"> <H2>步骤</H2> <P><SPAN>“Vulnerability Explorer”有助于调查整个环境中的漏洞,并根据特定的CVE过滤images。</SPAN></P> <P>&nbsp;</P> <P><STRONG>Prisma云计算版(Self-Hosted)控制台。</STRONG></P> <P><SPAN>&nbsp;进入 "监控"&gt;"漏洞"&gt;"漏洞浏览器"&gt;输入感兴趣的CVE(例如:CVE-2021-21687)。</SPAN></P> <P><SPAN>&nbsp;Monitor &gt; Vulnerabilities &gt; Vulnerability Explorer &gt; Input the&nbsp;CVE</SPAN></P> <span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="rtaImage.png" style="width: 577px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/46891i1959D77243B1C846/image-dimensions/577x173?v=v2" width="577" height="173" role="button" title="rtaImage.png" alt="rtaImage.png" /></span> <P><SPAN>&nbsp;过滤后的列表可以以CSV格式下载。</SPAN><BR /><SPAN>&nbsp;点击条目列表中的任何地方(在标签--风险分数、CVE风险因素、环境风险因素或受影响包下),以获得受该CVE影响的images。</SPAN><BR /><SPAN>&nbsp;如下图所示,2个images受到CVE-2021-21687的影响</SPAN></P> <span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="rtaImage.png" style="width: 673px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/46892i6AD39E2D325E95EE/image-dimensions/673x307?v=v2" width="673" height="307" role="button" title="rtaImage.png" alt="rtaImage.png" /></span> <P>&nbsp;</P> <P><STRONG>Prisma云企业版(SaaS)控制台:</STRONG></P> <P><SPAN>&nbsp;进入 "计算"&gt;"监控"&gt;"漏洞"&gt;"漏洞浏览器"&gt;输入感兴趣的CVE(例如:CVE-2021-41990)。</SPAN></P> <P><SPAN>&nbsp;Compute &gt; Monitor &gt; Vulnerabilities &gt; Vulnerability Explorer &gt; Input the&nbsp;CVE</SPAN></P> <span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="rtaImage.png" style="width: 687px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/46893i2EB8D72A05401B0F/image-dimensions/687x260?v=v2" width="687" height="260" role="button" title="rtaImage.png" alt="rtaImage.png" /></span></DIV> <DIV class="lia-message-template-solution-zone"><SPAN>&nbsp;过滤后的列表可以以CSV格式下载。</SPAN> <P><SPAN>&nbsp;点击条目列表中的任何地方(在标签--风险分数、CVE风险因素、环境风险因素或受影响包下)以获得受该CVE影响的images。</SPAN><BR /><SPAN>&nbsp;如下图所示,1个image受到CVE-2021-41990的影响。</SPAN></P> <span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="rtaImage.png" style="width: 687px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/46894iBF89101C40132D7C/image-dimensions/687x280?v=v2" width="687" height="280" role="button" title="rtaImage.png" alt="rtaImage.png" /></span> <P><SPAN>&nbsp;关于漏洞浏览器的视频教程,请参考<A href="https://knowledgebase.paloaltonetworks.com/KCSArticleDetail?id=kA14u000000HAg8CAG" target="_blank" rel="noopener">Video Tutorial: What Does Vulnerability Explorer Accomplish Within Prisma Cloud?</A></SPAN></P> <P>&nbsp;</P> <P><SPAN>额外信息</SPAN></P> <P><SPAN>注意:</SPAN></P> <P><SPAN>&nbsp;目前,在Monitor &gt; Vulnerabilities&nbsp;&gt; Images下,images只能通过某些关键词和属性进行过滤,而不是通过特定的CVE进行过滤,如下图所示。</SPAN></P> <span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="rtaImage.png" style="width: 733px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/46895iDEF961AB1104B626/image-dimensions/733x294?v=v2" width="733" height="294" role="button" title="rtaImage.png" alt="rtaImage.png" /></span> <P> </P> <span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="rtaImage.png" style="width: 733px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/46896i840628332373CA7C/image-dimensions/733x253?v=v2" width="733" height="253" role="button" title="rtaImage.png" alt="rtaImage.png" /></span> <P><SPAN>&nbsp;以下是为在 Monitor &gt; Vulnerabilities &gt; Images下添加CVE漏洞过滤器而提出的功能请求,目前没有ETA。</SPAN><BR /><SPAN>1、在image细节中添加额外的过滤器。<A href="https://prismacloud.ideas.aha.io/ideas/PANW-I-3012" target="_blank" rel="noopener">PANW-I-3012</A></SPAN><BR /><SPAN>2、在控制台界面的CI image扫描报告中添加CVE过滤器。<A href="https://prismacloud.ideas.aha.io/ideas/PANW-I-2959" target="_blank" rel="noopener">PANW-I-2959</A></SPAN></P> </DIV> </DIV> Tue, 10 Jan 2023 07:54:41 GMT https://live.paloaltonetworks.com/t5/%E9%85%8D%E7%BD%AE%E5%92%8C%E5%AE%9E%E6%96%BD/%E5%A6%82%E4%BD%95%E5%9C%A8prisma%E4%BA%91%E8%AE%A1%E7%AE%97%E4%B8%AD%E9%80%9A%E8%BF%87%E6%BC%8F%E6%B4%9E%E6%88%96cves%E8%BF%87%E6%BB%A4images/ta-p/526480 yishi 2023-01-10T07:54:41Z