CVE 1.3.0

tags: python | NVD | CVE | Enrichment | AdaptiveCard

Description

Integration with the National Vulnerabilities Database is created to support CDC users by providing enrichments for individual CVE IDs. CVE is the Common Vulnerabilities and Exposures (CVE) system. It provides a reference method for publicly known information-security vulnerabilities and exposure. This enrichment brings severity, exploitability, impact score, Common Vulnerability Scoring System (CVSS) details, etc. - which enable CDC users to make informed decisions on incident response.

The National Vulnerabilities Database is an online service that analyzes suspicious IPs, files, and URLs - to detect types of malware and malicious content using antivirus engines and website scanners. At the same time, it may be used as a means to detect false positives.

We use custom adaptive cards to display large amounts of CVE data in a meaningful intuitive GUI, to facilitate the easy understanding of complex enriched data about individual CVE IDs provided by users.

Customer Configuration

No customer configuration

CDC Command Lines

* **get_cve_details_cli**
Get information about CVE code.

Workflows

* **post_get_cve_details**
Post get-cve-details in the CDC, by the ID of the incident/message/channel.

Rules

No rules

Sensors

No sensors

Triggers

No triggers

Known Issues

No known issues