ACTI Vulnerability Query
Accenture CTI v2 Pack.#
This Integration is part of theSupported versions
Supported Cortex XSOAR versions: 5.5.0 and later.
Accenture CTI provides intelligence regarding security threats and vulnerabilities. This integration was integrated and tested with version v2.93.0 of ACTI
#
Configure ACTI Vulnerability Query in CortexParameter | Description | Required |
---|---|---|
url | URL | True |
api_token | API Token | True |
Source Reliability | Reliability of the source providing the intelligence data. | B - Usually reliable |
insecure | Trust any certificate (not secure) | False |
use_proxy | Use system proxy settings | False |
#
CommandsYou can execute these commands from the CLI, as part of an automation, or in a playbook. After you successfully execute a command, a DBot message appears in the War Room with the command details.
#
acti-vulnChecks the reputation of the given common vulnerabilities and exposures ID.
#
Base Commandacti-vuln
#
InputArgument Name | Description | Required |
---|---|---|
cve | CVE ID to check. | Optional |
#
Context OutputPath | Type | Description |
---|---|---|
CVE.ID | String | The ID of the CVE, for example: CVE-2022-1653 |
CVE.CVSS2 | String | The CVSS2 temporal score of the CVE based on exploitability, remediation level & report confidence, for example: 10.0 |
CVE.CVSS3 | String | The CVSS3 temporal score of the CVE based on exploitability, remediation level & report confidence, for example: 10.0 |
CVE.Published | String | The timestamp of when the CVE was published. |
CVE.Modified | String | The timestamp of when the CVE was last modified. |
CVE.Description | String | A description of the CVE. |
DBotScore.Indicator | String | The indicator that was tested. |
DBotScore.Reliability | String | Reliability of the source providing the intelligence data. |
DBotScore.Type | String | The indicator type. |
DBotScore.Vendor | String | The vendor that was used to calculate the score. |
DBotScore.Score | String | The actual score. |
#
Command Example!acti-vuln cve=CVE-2022-1653
#
Context Example#
Human Readable Output#
Results
CPEs CVSS2 CVSS3 DbotReputation Description LastModified LastPublished Name UUID cpe:/a:f5:big-ip:16.1.1 10 10 2 Description of the vulnerability 2022-01-27 03:40:00 2022-01-22 04:01:42 CVE-2022-1653 cbc55efe-aa5c-4114-b532-e44f9b824fe1