Hi Team, The Prisma cloud scans the CVE-2023-52426 in the docker image demisto/pandas:1.0.0.86039 and the package version is 2.5.0-r2 and is fixed in 2.6.0-r0. The customer wants to know in what version of the docker images, the CVE is resolved. So we need to know what tag version the CVE-2023-52426 is resolved?
Hello everyone, I am a machine learning scientist exploring ways to integrate ML algorithms with XSOAR. While I am familiar with XSOAR's AutoML features, my focus is on implementing custom models (e.g., TensorFlow or PyTorch models) within XSOAR workflows. I haven't found a straightforward method to directly integrate these models into a playb...
I am using the ServiceNow V2 integration. XSOAR fetches the attachments related to an incident from ServiceNow when creating an XSOAR incident. But, when I add another attachment to that ServiceNow incident, the attachment panel does not reflect the newly added attachment. The mirroring is happening and I got the File entry in the War Room. Is t...
We encountered a persistent issue in Cortex XSOAR when trying to retrieve the entry ID for files attached to incidents imported from a ServiceNow instance. Our objective was to access and process an Excel file attached to a ServiceNow ticket within XSOAR. Despite various attempts and methods, we were unable to successfully access the file due to...
Hi everyone, I’m trying to test the email notifications configured in Cortex XSOAR to ensure they include the correct variables (like incident severity, name, and ID). Specifically, I want to verify the notification sent to an analyst when they are assigned an incident. Here are my main questions: Is there a built-in way to send test notifica...
To make this forum valuable and enjoyable for everyone, please review the following guidelines before participating: Rules and Best Practices Be Respectful: Treat fellow community members with professionalism and courtesy. Constructive discussions are encouraged; disrespectful or inflammatory comments are not. Stay On-Topic: This board is d...
Hi All, a broad question i know... but is there a way to do a query to list/output all available tables in a specific integration within the playground? and possibly even the fields with each table? this is specific to servicenow v2 ie servicenow-query-table table_name=* thanks in adv
I am using Xsoar child tenant. However, I manually selected more than one incident and ran another playbook with the setplaybook command and suddenly Xsoar broke. When I want to reconnect through the browser, I get Starting your server error. I waited for about 3 hours, unfortunately it did not recover. When I checked the system via vmcenter, I ...
Hello, I tried to update Virus total however facing the below: using the command: podman pull demisto/pack but still newer packs are appeared!
Hi Guys, I would like to express my interest in implementing a One-Time Password (OTP) authentication mechanism for the Cortex XSOAR login process to enhance security.My specific requirements are:- The OTP solution must be deployed on-premise to ensure full control over authentication.- It should have an application that integrates seamlessly wi...
Hello LiveComm, I am building a use-case in which we want to update and manage the Cortex XDR EDL from the XSOAR. We do not want just to create new IOC's but rather we want to interact with the EDL so that Firewalls can access it correctly. From what I have read on the various documentation the Cortex XDR EDL is not available for API access (M...
I get the hard time to mapped the domain_id under the Label section coming from Qradar data. The mentioned fields not parsed at the first place, luckily the domain_id is found in the Qradar_instance and mapped by creating the new incident field. Issue: The new incident field for domain_id not being updated in the past incident, need suppor...
Hi, I have some questions regarding creating the custom docker images.1. Is it possible to create the custom docker images not using the war room? In the docs, the docker images can be created via war room command, but I want to create docker image in the soar server using the ssh connection.Is it okay to create the custom docker image at the se...
Which ones are true?I thought it is BD but some sources say it is CD Which two statements describe how timers are configured to start and stop automatically in a playbook? (Choose two.) A. Use a field of Number to count the number of seconds elapsed between two tasks B. After the playbook has run, calculate the total time taken and set the ti...
