CIRCL CVE Search
CIRCL Pack.#
This Integration is part of theSupported versions
Supported Cortex XSOAR versions: 6.5.0 and later.
Searches for CVE information using circl.lu.
#
Configure CIRCL CVE Search in CortexParameter | Required |
---|---|
Server URL | True |
Use system proxy settings | False |
Trust any certificate (not secure) | False |
#
CommandsYou can execute these commands from the CLI, as part of an automation, or in a playbook. After you successfully execute a command, a DBot message appears in the War Room with the command details.
#
cve-latestReturns the latest updated CVEs.
#
Base Commandcve-latest
#
InputArgument Name | Description | Required |
---|---|---|
limit | The maximum number of CVEs to display. | Optional |
#
Context OutputPath | Type | Description |
---|---|---|
CVE.ID | String | The ID of the CVE. |
CVE.CVSS | Number | The CVSS score of the CVE. |
CVE.Published | Date | The date the CVE was published. |
CVE.Modified | Date | The date that the CVE was last modified. |
CVE.Description | String | The description of the CVE. |
DBotScore.Indicator | String | The indicator value. |
DBotScore.Score | Number | The indicator score. |
DBotScore.Type | String | The indicator type. |
DBotScore.Vendor | String | The vendor reporting the score of the indicator. |
#
Human Readable OutputCVSS | The CVE CVSS Score |
Description | CVE Description |
ID | CVE ID |
Modified | The date the CVE was modified |
Published | The date the CVE was published |
#
cveReturns CVE information by CVE ID.
#
Base Commandcve
#
InputArgument Name | Description | Required |
---|---|---|
cve | A comma-separated list of CVE IDs to search | Required |
#
Context OutputPath | Type | Description |
---|---|---|
CVE.ID | String | The ID of the CVE. |
CVE.CVSS.Score | Number | The CVSS score of the CVE. |
CVE.CVSS.Vector | String | The CVSS vector of the CVE. |
CVE.CVSS.Table | Dict | The CVSS table of the CVE. |
CVE.Published | Date | The date the CVE was published. |
CVE.Modified | Date | The date that the CVE was last modified. |
CVE.Description | String | The description of the CVE. |
CVE.vulnerableconfigurations | Dict | Vulnerable configurations in CPE format |
CVE.vulnerableproduct | Dict | Vulnerable products in CPE format |
CVE.Tags | List | A list of tags |
CVE.Relationships | List | List of relationships for the CVE |
DBotScore.Indicator | String | The indicator that was tested. |
DBotScore.Score | Number | The actual score. |
DBotScore.Type | String | The indicator type. |
DBotScore.Vendor | String | The vendor used to calculate the score. |
#
Command Example!cve cve=CVE-2014-1234
#
Context Example#
Human Readable OutputCVSS | 4.3 |
Description | XSS in livehelperchat in GitHub repository livehelperchat/livehelperchat prior to 3.97. This vulnerability has the potential to deface websites, result in compromised user accounts, and can run malicious code on web pages, which can lead to a compromise of the user’s device. |
ID | CVE-2022-1234 |
Modified | 2022-04-13T15:03:00 |
Published | 2022-04-06T04:15:00 |