Global Network Scan Findings

NOTE: Network Scan Findings data is sourced from a probe agent. If no probe agent is present, no network scan findings data will be displayed. This will also result in blank data for any 'network scan findings' reports.

image-20240827-153625.png

A Network Vulnerability refers to a weakness or flaw in a computer network that could potentially be exploited by malicious actors or software.

Here is a sample list of network-based vulnerabilities.

Vulnerability

CVE-ID

Brief Description

Vulnerability

CVE-ID

Brief Description

EternalBlue

CVE-2017-0144

It exploits the Windows Server Message Block (SMB) protocol, notable for its role in WannaCry ransomware.

Apache Struts

CVE-2017-5638

Affects Apache Struts, leading to remote code execution, exploited in the Equifax data breach.

Heartbleed

CVE-2014-0160

It affects OpenSSL and allows unauthorized memory access, potentially exposing sensitive data.

BlueKeep

CVE-2019-0708

Critical RCE vulnerability in Microsoft's Remote Desktop Protocol (RDP).

Pulse Secure

CVE-2019-11510

Vulnerability in Pulse Secure VPNs allowing unauthorized access to sensitive information.

Internet Explorer

CVE-2018-8174

Exploits a scripting engine vulnerability in Internet Explorer, leading to remote code execution.

Cisco ASA

CVE-2018-0101

It affects Cisco Adaptive Security Appliance (ASA) software and allows remote code execution.

Windows CryptoAPI

CVE-2020-0601

It affects Windows CryptoAPI, which could allow an attacker to spoof code-signing certificates.

Netlogon Elevation of Privilege

CVE-2020-1472

Netlogon Remote Protocol (MS-NRPC) vulnerability allows attackers to gain elevated privileges.

Microsoft Office/Word

CVE-2017-0199

Exploits a vulnerability in Microsoft Word, allowing remote code execution.


This is your global view of all detected network-based vulnerabilities.

image-20240827-153658.png

Global Network Scan Findings - Table of Contents


Global Network Scan Findings - Overview

The data is organized in the Network Scan Findings pod, which includes the header row of data. You can use the column selector to hide, add, and adjust the order of the columns.


Global Network Scan Findings - Details

The network scanning findings data have built-in filters to differentiate between Active and Suppressed and Confirmed and Unconfirmed.

Use the column selector to add, remove, and organize the data you see:

Field

Description

Field

Description

CVE

Displays the problem name or CVEID if applicable

Severity

Displays the severity as Critical, High, Medium, or Low

CVSS Score

Displays the CVSS Base Score from NVD (if applicable)

Title

Displays the description of the problem / CVEID

Confirmed

Displays as Yes or No; Confirmed means X

Assets

Displays the count of Assets affected by the application vulnerability

Companies

Displays the count of Companies affected by the application vulnerability


Global Network Scan Findings - Action Toolbar Overview

The standard Alerts and Info feature is available on the right navigation bar; this displays the common System Events data.


Info

Tap to view the Getting Started info; see the link below for additional information.

Getting Started In App Info


Need Support?

Contact our support team by sending an email to support@connectsecure.com or by visiting our Partner Portal, where you can create, view, and manage your tickets.

https://cybercns.freshdesk.com/en/support/login


Â