In Nexpose version 6.4.28, we are adding support for privileged elevation on Cisco devices through enable command for those that are running SSH version 2.
A fully privileged policy scan provides more accurate information on the target's compliance status, and the ability to do so through enable password, while keeping the actual user privilege low, adds an additional layer of security for your devices. This allows our users to run fully privileged policy scans on Cisco IOS without having to pre-configure the target with a user that has full privilege. Instead, they could enter the enable password in the credential window similar to how sudo elevation is set up.
Simply navigate to the credential configuration page for SSH services and select Cisco Enable / privileged exec as your elevation type and enter your enable password as the elevation password, per the screenshot below:
Article Tags
Related blog posts
Vulnerabilities and Exploits
Metasploit Weekly Wrap-Up 7/19/2024
Christophe De La Fuente
Vulnerabilities and Exploits
Metasploit Weekly Wrap-Up: Mar. 4, 2022
Shelby Pace
Vulnerabilities and Exploits
The Everyperson’s Guide to Log4Shell (CVE-2021-44228)
boB Rudis
Threat Research
Metasploit Wrap-Up 12/10/21
Jeffrey Martin