topic Enterasys SIEM Dragon 7.7.2 Patch 2 &quot;Unrecognized Threat Vulnerability Exploit Event&quot; in Scripting https://community.extremenetworks.com/t5/scripting/enterasys-siem-dragon-7-7-2-patch-2-quot-unrecognized-threat/m-p/20576#M250 Hello,<BR /> <BR /> We have events "Unrecognized Threat Vulnerability Exploit Event" which this matches the vulnerability signature corresponds to "JCE Vulnerability Scanning Detection (36268)" Manufacturer Palo Alto.<BR /> <BR /> What QID map correspond of SIEM? <BR /> <BR /> <B>Enterasys SIEM Dragon</B><BR /> ------------------------------------------<BR /> Event Name: Unrecognized Vulnerability Exploit Threat Event<BR /> Low Level Category: Misc Exploit<BR /> Event Description: Unrecognized Palo Alto PA Series Vulnerability Exploit Threat Event<BR /> <BR /> <B>Palo Alto “JCE Vulnerability Scanning Detection(36268)”</B><BR /> ------------------------------------------<BR /> ET Scan Detection<BR /> Signature ID : 36268<BR /> Description This signature detects a possible JCE vulnerability scanning on the web server.<BR /> References <A href="http://blog.unmaskparasites.com/2014/01/27/invasion-of-jce-bots/" target="_blank" rel="nofollow noreferrer noopener">http://blog.unmaskparasites.com/2014/01/27/invasion-of-jce-bots/</A><BR /> Severity high<BR /> Category info-leak<BR /> Default action alert <BR /> <BR /> <BR /> <BR /> Could you help me.<BR /> <BR /> Thank you very much<BR /> <BR /> Diego Cu<BR /> <BR /> Mon, 22 Sep 2014 19:33:00 GMT cos 2014-09-22T19:33:00Z Enterasys SIEM Dragon 7.7.2 Patch 2 "Unrecognized Threat Vulnerability Exploit Event" https://community.extremenetworks.com/t5/scripting/enterasys-siem-dragon-7-7-2-patch-2-quot-unrecognized-threat/m-p/20576#M250 Hello,<BR /> <BR /> We have events "Unrecognized Threat Vulnerability Exploit Event" which this matches the vulnerability signature corresponds to "JCE Vulnerability Scanning Detection (36268)" Manufacturer Palo Alto.<BR /> <BR /> What QID map correspond of SIEM? <BR /> <BR /> <B>Enterasys SIEM Dragon</B><BR /> ------------------------------------------<BR /> Event Name: Unrecognized Vulnerability Exploit Threat Event<BR /> Low Level Category: Misc Exploit<BR /> Event Description: Unrecognized Palo Alto PA Series Vulnerability Exploit Threat Event<BR /> <BR /> <B>Palo Alto “JCE Vulnerability Scanning Detection(36268)”</B><BR /> ------------------------------------------<BR /> ET Scan Detection<BR /> Signature ID : 36268<BR /> Description This signature detects a possible JCE vulnerability scanning on the web server.<BR /> References <A href="http://blog.unmaskparasites.com/2014/01/27/invasion-of-jce-bots/" target="_blank" rel="nofollow noreferrer noopener">http://blog.unmaskparasites.com/2014/01/27/invasion-of-jce-bots/</A><BR /> Severity high<BR /> Category info-leak<BR /> Default action alert <BR /> <BR /> <BR /> <BR /> Could you help me.<BR /> <BR /> Thank you very much<BR /> <BR /> Diego Cu<BR /> <BR /> Mon, 22 Sep 2014 19:33:00 GMT https://community.extremenetworks.com/t5/scripting/enterasys-siem-dragon-7-7-2-patch-2-quot-unrecognized-threat/m-p/20576#M250 cos 2014-09-22T19:33:00Z