CVE Enrichment - Generic v2

Performs CVE enrichment using the following integrations:

  • VulnDB
  • CVE Search
  • IBM X-Force Exchange

Dependencies

This playbook uses the following sub-playbooks, integrations, and scripts.

Sub-playbooks

This playbook does not use any sub-playbooks.

Integrations

  • CVE Search
  • XFE
  • VulnDB

Scripts

This playbook does not use any scripts.

Commands

  • cve-search
  • vulndb-get-vuln-by-cve-id

Playbook Inputs


NameDescriptionDefault ValueSourceRequired
cve_idThe CVE ID to enrich.IDCVEOptional

Playbook Outputs


PathDescriptionType
CVEThe CVE object.unknown
CVE.IDThe ID of the CVE.string
CVE.CVSSThe CVSS score of the CVE.number
CVE.PublishedThe date this was published.date
CVE.ModifiedThe last time the CVE was modified.date
CVE.DescriptionThe CVE description.string
VulnDB.Vulnerability.IDThe vulnerability ID.unknown
VulnDB.Vulnerability.TitleThe vulnerability title (human readable).unknown
VulnDB.Vulnerability.DescriptionThe vulnerability description (human readable).unknown
VulnDB.Vulnerability.SolutionThe vulnerability solution (human readable).unknown
VulnDB.CvssMetrics.IdThe CVSS reference value.unknown
VulnDB.CvssMetrics.ConfidentialityImpactThe CVSS confidentiality impact.unknown
VulnDB.CvssMetrics.AvailabilityImpactThe CVSS availability impact.unknown
VulnDB.CvssMetrics.ScoreThe CVSS score.unknown
VulnDB.cvssMetrics.integrity_impactThe CVSS integrity impact.unknown
VulnDB.Vendors.IdThe vendor ID.unknown
VulnDB.Products.IdThe product IDs.unknown

Playbook Image


CVE_Enrichment_Generic_v2