Help
FortiSOAR Knowledge Base
FortiSOAR: Security Orchestration and Response software provides innovative case management, automation, and orchestration. It pulls together all of an organization's tools, helps unify operations, and reduce alert fatigue, context switching, and the mean time to respond to incidents.
Andy_G
Staff
Staff

Created on ‎04-10-2020 01:35 AM

Article Id 197256

Technical Note: CSTN 00010 - Performing a search with the dash (-) character included in the search keyword does not show the result

Description

Issue

Let’s take an example of performing a search for a CVE (notation CVE-YYYY-####). The issue occurs while using the global search feature and not on the search box around the tasks module.


We created alerts with names “CVE-2017-2654” “CVE” “2017” and “2654” and searched for “CVE-2017-2654” in global search.

in 4.10.3 it gave the search results for “CVE OR 2017 OR 2654” but did not search for “CVE-2017-2654” as a complete word
image.png


Root cause: 

CyOPs reads the dash character (-) as space. It also disregards quotation marks placed around a full CVE. In the above example, this causes it to seemingly perform three OR searches (CVE OR Year OR four-digit string.). This makes searching for a CVE difficult.


Solution

Fix: 4.11 and above has this issue resolved. 


In 4.11.1 it gave the search results for “CVE-2017-2654 OR CVE OR 2017 OR 2654”
image.png


Found in Version:

4.10.X and previous


Reference Id - #35647


Labels:
197
0 Kudos
Submit Article Idea
Contributors
Broad. Integrated. Automated.

The Fortinet Security Fabric brings together the concepts of convergence and consolidation to provide comprehensive cybersecurity protection for all users, devices, and applications and across all network edges.

Social Media
Security Research
Company
News & Articles
Contact Us

Copyright 2024 Fortinet, Inc. All Rights Reserved.