CVE 1.4.0
  • 06 Oct 2022
  • 1 Minute to read
  • Dark
    Light
  • PDF

CVE 1.4.0

  • Dark
    Light
  • PDF

Article Summary

tags: python | NVD | CVE | Enrichment | AdaptiveCard


Description

Integration with the National Vulnerabilities Database is created to support CDC users by providing enrichments for individual CVE IDs. The Common Vulnerabilities and Exposures (CVE) system provides a reference method for publicly-known information security vulnerabilities and exposure. This enrichment brings severity, exploitability, impact score, Common Vulnerability Scoring System (CVSS) details, etc. - which enables CDC users to make informed decisions regarding incident response.

The National Vulnerabilities Database is an online service that analyzes suspicious IP, files and URLs to detect types of malware and malicious content using antivirus engines and website scanners. At the same time, it may be used as a means to detect false positives.

We use custom adaptive cards to display a large amount of CVE data in a meaningful and intuitive GUI, to facilitate an easy understanding of complex enriched data about individual CVE IDs provided by users.

Integration Type:Threat Intelligence Enrichment
Information read:Information for CVE IDs - including severity, exploitability, impact score, and Common Vulnerability Scoring System (CVSS) details.
API Supported:API V1.0
Input:CVE id
Output:Detailed enriched information on CVE IDs - including severity, exploitability, impact score, Common Vulnerability Scoring System (CVSS) details, etc. - using the National Vulnerabilities database(NVD).

Customer Configuration

No customer configuration


CDC Command Lines

* **get_cve_details_cli**
Gets information about CVE codes.

OptionTypeDescriptionRequired
cve_codestringCVE code in format "CVE-PQRS-ABCDE"True

Workflows

No workflows


Rules

No rules


Sensors

No sensors


Triggers

No triggers


Known Issues

No known issues


Was this article helpful?