05-24-2016 05:14 AM
Is it possible to show the CVSS scores for Alerts / PSIRTs within SNTC, that is in any view, report or dashboard?
Solved! Go to Solution.
06-01-2018 10:25 AM
Hi Elijah,
Thanks for checking with us. The CVSS score is scheduled to be available as part of our June 8th SNTC portal release. You should be able to verify the details on Monday, June 11th.
Cheers,
Cheri
05-25-2016 09:00 AM
Hi Pamela,
I've generated reports for 'All Alerts' and 'All PSIRT Alerts' and even scheduled a 'Product Alerts Report' and in each case no CVSS data is provided.
All the reports via the Library > Alerts views are just single csv files (i.e. single tab when opened in MS Excel).
The scheduled 'Product Alerts Report' spreadsheet has 6 tabs: AlertsSummary, HardwareAlerts, SoftwareAlerts, FieldNoticeAlerts, PsirtAlerts and TooltipSummary, no ISAlerts tab is found and neither of the tabs that do exist contain any CVSS score details.
Can you be more verbose in your explanation.
Thanks,
Graham
05-25-2016 09:23 PM
Hello Graham ,
Apologies for the confusion , I was referring to the old SNTC version(SNTC1x ) where this capability was present but with newer version we don't have it included at present .
Regards
Pamela
05-26-2016 04:30 AM
Given the critical nature of such alerts and the importance of CVSS scoring in respect of managing and reacting to an alert, what are the current plans to reinstate this key data within SNTC?
05-26-2016 11:56 PM
Hello Graham,
I have contacted appropriate team on this to know about the road maps , Once I have details I will share with you on this post or respective team will reply on this thread .
Thank you,
Pamela
06-02-2016 11:13 PM
Hi Graham,
we have a feature that is currently under implementation that would enable SNTC portal to showcase the Security Impact Rating (SIR) for a given PSRIT.
The SIR classifications are aligned with Common Vulnerability Scoring System (CVSS) scores. However, Cisco reserves the right to deviate from this on an exception basis in the event that there are additional factors not properly captured in the CVSS score. We will keep you posted on the availability of this feature on SNTC portal
Regards,
Vikas
06-03-2016 03:49 AM
Hi Vikas,
First thanks for the statement; although whilst it answers the question it does give some concern regarding potential intent to mask industry standard scoring by only highlighting the less granular Cisco SIR rating; this is contrary to tat as stated in the current Cisco Security Vulnerability Policy, within SNTC.
Since the policy clearly states under the heading 'Assessing Security Risk' that "Cisco uses version 2.0 of the Common Vulnerability Scoring System (CVSS) as part of its standard process of evaluating reported potential vulnerabilities in Cisco products", and that SIR is an 'additional' and 'simple' categorization.
Such details (CVSS scores) are included within 'Cisco Security Advisories' and referenced within Cisco Bug descriptions, noting that bug description themselves reference only the CVSS score and not SIR rating.
Furthermore since CVSS is universally adopted by all (telecom) vendors it enables us, as network operators, consistent analysis of threats to a common framework and scale. This is of significant benefit especially when we have devices from multiple vendors deployed within our networks.
I hope that Cisco will reconsider this planned approach to merely 'showcase the Security Impact Rating' and provide the standard CVSS score for all PSIRT alerts within the SNTC portal.
Rgds,
Graham
06-10-2016 02:44 AM
Hi Folks,
Do I need to open a TAC case / product feature request for: 'provide the standard CVSS score for all PSIRT alerts within the SNTC portal'?
Rgds,
Graham
06-14-2016 01:34 AM
Hi Graham,
From Smart Net Total Care you do not need to open a TAC SR to request an enhancement. You can add comments or make a request using the Feedback feature (Top Right corner on the Dashboards view) if you like. The Feedback button looks like a Note Pad.
Regards, Tim
06-14-2016 02:34 AM
Hi Tim,
I was aware of this 'feedback form' but it does not look like a formal mechanism in which to submit product feature requests, or query functional aspects of the product/service.
I have several TAC cases open for other aspects of SNTC (and CSPC), both covering problems and enhancements, many of then have been confirmed as bugs or valid enhancements and are pending delivery.
Rgds,
Graham
05-29-2018 07:47 PM
I'm facing the same issue with several of my customers - CVSS scores in the PSIRT alerts report is preferred and more granular.
This thread dates back to 2016, was there any progress or confirmation from Cisco?
Cheers.
06-01-2018 10:25 AM
Hi Elijah,
Thanks for checking with us. The CVSS score is scheduled to be available as part of our June 8th SNTC portal release. You should be able to verify the details on Monday, June 11th.
Cheers,
Cheri
06-12-2018 06:31 PM
Confirming CVSS scores are now showing on the Portal and exported reports.
Thanks All.
Discover and save your favorite ideas. Come back to expert answers, step-by-step guides, recent topics, and more.
New here? Get started with these tips. How to use Community New member guide