CEF Syslog Message Types
Message Type
Syslog message format for vulnerability and real-time Syslog entries generated by PASLs, PRMs, and internal plugins:
timestamp CEF: Version|Device Vendor|Device Product|Device Version|Signature ID|Name|Severity|Extension
Message Fields
|
Name |
Description |
|---|---|
|
Device Product |
Displays the name of the product on the detected sending device. |
|
Device Vendor |
Displays the vendor of the product on the detected sending device. |
|
Device Version |
Displays the version of the product on the detected sending device. |
|
Extension |
Displays key-value pairs for one or more of the following additional fields: src, dst, spt, dpt, proto, and msg. |
|
Name |
Displays the name of the Tenable Network Monitor plugin or PASL ID triggered by the reported traffic. |
|
Severity |
Displays the associated severity level of the reported vulnerability. |
|
Signature ID |
Displays the reported Tenable Network Monitor plugin or PASL ID triggered by the reported traffic. |
|
timestamp |
Displays the date and time of the Syslog message. |
|
Version |
Displays the version of the CEF format version. |