TOC & Recently Viewed

Recently Viewed Topics

CEF Syslog Message Types

Message Type

Syslog message format for vulnerability and real-time Syslog entries generated by PASLs, PRMs, and internal plugins:

timestamp CEF: Version|Device Vendor|Device Product|Device Version|Signature ID|Name|Severity|Extension

Message Fields

Name

Description

Device Product

Displays the name of the product on the detected sending device.

Device Vendor

Displays the vendor of the product on the detected sending device.

Device Version

Displays the version of the product on the detected sending device.

Extension

Displays key-value pairs for one or more of the following additional fields: src, dst, spt, dpt, proto, and msg.

Name

Displays the name of the PVS plugin or PASL ID triggered by the reported traffic.

Severity

Displays the associated severity level of the reported vulnerability.

Signature ID

Displays the reported PVS plugin or PASL ID triggered by the reported traffic.

timestamp

Displays the date and time of the Syslog message.

Version

Displays the version of the CEF format version.

Copyright 2017. Tenable Network Security, Inc. All rights reserved. Tenable Network Security, Nessus, SecurityCenter Continuous View, Passive Vulnerability Scanner, and Log Correlation Engine are registered trademarks of Tenable Network Security, Inc. All other products or services are trademarks of their respective owners.