https://live.paloaltonetworks.com/t5/advanced-threat-prevention/cve-mapping-for-zero-day-exploits-enhancement-in-threat-content/m-p/1218236#M2406 <P><STRONG>Advanced Threat Prevention</STRONG><SPAN><STRONG>&nbsp;(ATP)</STRONG> is industry's first IPS to stop Zero-day attacks inline. </SPAN></P> <P><SPAN>ATP is powered by <STRONG>Precision AI</STRONG>, a proprietary system that leverages the capability of Machine Learning, Deep Learning, and Generative AI. </SPAN></P> <P><SPAN>These security models are trained with high-fidelity data to accurately detect and prevent rapidly evolving threats in real-time.</SPAN></P> <P>&nbsp;</P> <P><SPAN>In order to bring greater <STRONG>clarity and transparency</STRONG>, we recently introduced CVE Mapping to enhance our threat content release notes and Cloud report as follows:</SPAN></P> <P>&nbsp;</P> <P><SPAN>1.)&nbsp;The <STRONG>threat content release note</STRONG>&nbsp;includes a new section for CVEs detected by ATP's inline cloud detection models, for Command Injection </SPAN></P> <P><SPAN>and SQL Injection, when a new zero-day exploit is detected.</SPAN></P> <P><SPAN><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="Screenshot 2025-01-30 103833.png" style="width: 400px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/65561i9BD20D621935F934/image-size/medium?v=v2&amp;px=400" role="button" title="Screenshot 2025-01-30 103833.png" alt="Screenshot 2025-01-30 103833.png" /></span></SPAN></P> <P>&nbsp;</P> <P><SPAN>2.) The ATP's <STRONG>Cloud report</STRONG> includes CVEs mapped&nbsp;to the unknown zero-day exploits reported by inline cloud detection models of advanced threat prevention.</SPAN></P> <P><SPAN> With CVE Mapping enhancement, the Cloud report now provides detailed CVE information as follows:</SPAN></P> <UL id="id0c5928cf-31f6-4b98-8c9e-f7ffeb816e15_ul-szn_mjx_c2c" class="ul"> <LI class="li"> <DIV class="p">CVE ID</DIV> </LI> <LI class="li"> <DIV class="p">Name of the CVE.</DIV> </LI> <LI class="li"> <DIV class="p">Description of the CVE.</DIV> </LI> <LI class="li"> <DIV class="p">Category of CVE, e.g. SQL injection or Command injection</DIV> </LI> <LI class="li"> <DIV class="p">Severity level, e.g.&nbsp;Critical, High, Medium, or Low</DIV> </LI> <LI class="li"> <DIV class="p">Score as determined by the CVSS (range 0 -10)</DIV> </LI> <LI class="li"> <DIV class="p">First Published Date of CVE&nbsp;</DIV> </LI> <LI class="li"> <DIV class="p">Confidence Level - the degree of certainty our&nbsp;<SPAN>ML models have for the CVE mapping</SPAN></DIV> </LI> </UL> <P><SPAN>To learn more please watch this <A href="https://youtu.be/ABBQhfrD_ho" target="_blank" rel="noopener">video with live demo</A>.</SPAN></P> <P>&nbsp;</P> <P><LI-WRAPPER> </LI-WRAPPER></P> <P>&nbsp;</P> <P>#Advanced Threat Prevention #Cloud Delivered Security Services #Network Security&nbsp;</P> <P>&nbsp;</P> <P>&nbsp;</P> Thu, 30 Jan 2025 19:00:42 GMT kvarshney 2025-01-30T19:00:42Z https://live.paloaltonetworks.com/t5/advanced-threat-prevention/cve-mapping-for-zero-day-exploits-enhancement-in-threat-content/m-p/1218236#M2406 <P><STRONG>Advanced Threat Prevention</STRONG><SPAN><STRONG>&nbsp;(ATP)</STRONG> is industry's first IPS to stop Zero-day attacks inline. </SPAN></P> <P><SPAN>ATP is powered by <STRONG>Precision AI</STRONG>, a proprietary system that leverages the capability of Machine Learning, Deep Learning, and Generative AI. </SPAN></P> <P><SPAN>These security models are trained with high-fidelity data to accurately detect and prevent rapidly evolving threats in real-time.</SPAN></P> <P>&nbsp;</P> <P><SPAN>In order to bring greater <STRONG>clarity and transparency</STRONG>, we recently introduced CVE Mapping to enhance our threat content release notes and Cloud report as follows:</SPAN></P> <P>&nbsp;</P> <P><SPAN>1.)&nbsp;The <STRONG>threat content release note</STRONG>&nbsp;includes a new section for CVEs detected by ATP's inline cloud detection models, for Command Injection </SPAN></P> <P><SPAN>and SQL Injection, when a new zero-day exploit is detected.</SPAN></P> <P><SPAN><span class="lia-inline-image-display-wrapper lia-image-align-inline" image-alt="Screenshot 2025-01-30 103833.png" style="width: 400px;"><img src="https://live.paloaltonetworks.com/t5/image/serverpage/image-id/65561i9BD20D621935F934/image-size/medium?v=v2&amp;px=400" role="button" title="Screenshot 2025-01-30 103833.png" alt="Screenshot 2025-01-30 103833.png" /></span></SPAN></P> <P>&nbsp;</P> <P><SPAN>2.) The ATP's <STRONG>Cloud report</STRONG> includes CVEs mapped&nbsp;to the unknown zero-day exploits reported by inline cloud detection models of advanced threat prevention.</SPAN></P> <P><SPAN> With CVE Mapping enhancement, the Cloud report now provides detailed CVE information as follows:</SPAN></P> <UL id="id0c5928cf-31f6-4b98-8c9e-f7ffeb816e15_ul-szn_mjx_c2c" class="ul"> <LI class="li"> <DIV class="p">CVE ID</DIV> </LI> <LI class="li"> <DIV class="p">Name of the CVE.</DIV> </LI> <LI class="li"> <DIV class="p">Description of the CVE.</DIV> </LI> <LI class="li"> <DIV class="p">Category of CVE, e.g. SQL injection or Command injection</DIV> </LI> <LI class="li"> <DIV class="p">Severity level, e.g.&nbsp;Critical, High, Medium, or Low</DIV> </LI> <LI class="li"> <DIV class="p">Score as determined by the CVSS (range 0 -10)</DIV> </LI> <LI class="li"> <DIV class="p">First Published Date of CVE&nbsp;</DIV> </LI> <LI class="li"> <DIV class="p">Confidence Level - the degree of certainty our&nbsp;<SPAN>ML models have for the CVE mapping</SPAN></DIV> </LI> </UL> <P><SPAN>To learn more please watch this <A href="https://youtu.be/ABBQhfrD_ho" target="_blank" rel="noopener">video with live demo</A>.</SPAN></P> <P>&nbsp;</P> <P><LI-WRAPPER> </LI-WRAPPER></P> <P>&nbsp;</P> <P>#Advanced Threat Prevention #Cloud Delivered Security Services #Network Security&nbsp;</P> <P>&nbsp;</P> <P>&nbsp;</P> Thu, 30 Jan 2025 19:00:42 GMT https://live.paloaltonetworks.com/t5/advanced-threat-prevention/cve-mapping-for-zero-day-exploits-enhancement-in-threat-content/m-p/1218236#M2406 kvarshney 2025-01-30T19:00:42Z