daffainfo
/
nuclei-templates
mirror of https://github.com/daffainfo/nuclei-templates.git
1
0
Fork 0
Code Issues Packages Projects Releases Wiki Activity
nuclei-templates/http/exposed-panels/cisco/cisco-ios-xe-panel.yaml

40 lines
1.0 KiB
YAML
Raw Blame History

id: cisco-ios-xe-panel
info:
name: Cisco IOS XE - Detect
author: bhutch
severity: info
description: |
Cisco IOS XE login panel was detected.
reference:
- https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-webui-privesc-j22SaA4z
classification:
cvss-metrics: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:N
cwe-id: CWE-200
metadata:
verified: "true"
max-request: 2
shodan-query: http.html_hash:1076109428
tags: panel,cisco
ssl:
- address: "{{Host}}:{{Port}}"
http:
- method: GET
path:
- "{{BaseURL}}"
matchers:
- type: dsl
dsl:
- contains(http_body,'webui')
- contains(ssl_issuer_dn,'IOS-Self-Signed-Certificate')
condition: and
extractors:
- type: kval
kval:
- ssl_issuer_dn
# digest: 490a00463044022033e7ae47f7067278682054353e5535a5677d170e991b7b7cf9a9bb510d4c1e410220038e398757b90733d5eb31f0397eda4d8153ca0d920f9b0cd33f28e3efabb2b0:922c64590222798bb761d5b6d8e72950
Reference in New Issue View Git Blame Copy Permalink