nuclei-templates/http/exposed-panels/cisco/cisco-ios-xe-panel.yaml

40 lines
1.1 KiB
YAML
Raw Normal View History

2023-10-25 19:03:29 +00:00
id: cisco-ios-xe-panel
info:
name: Cisco IOS XE - Detect
author: bhutch
severity: info
description: |
Cisco IOS XE login panel was detected.
reference:
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-webui-privesc-j22SaA4z
2023-10-25 19:03:29 +00:00
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cwe-id: CWE-200
metadata:
verified: "true"
max-request: 2
vendor: cisco
product: ios_xe
shodan-query: http.html_hash:1076109428
2023-10-25 19:03:29 +00:00
tags: panel,cisco
ssl:
- address: "{{Host}}:{{Port}}"
http:
- method: GET
path:
- "{{BaseURL}}"
matchers:
- type: dsl
dsl:
- contains(http_body,'webui')
- contains(ssl_issuer_dn,'IOS-Self-Signed-Certificate')
condition: and
extractors:
- type: kval
kval:
- ssl_issuer_dn
# digest: 490a0046304402201a2fba5edbe040c8e96abeda374f6f4aa7fb58107608e3224001c3731e1d72f9022057a6ca352e84ecd56a48ad4c7d5836f7e56759e1dd77e38f4380eb7644aef271:922c64590222798bb761d5b6d8e72950