Skip to main content

OpenCVE

This Integration is part of the OpenCVE Pack.#

Supported versions

Supported Cortex XSOAR versions: 6.9.0 and later.

Ingests CVEs from an instance of OpenCVE.

Configure OpenCVE on Cortex XSOAR#

  1. Navigate to Settings > Integrations > Servers & Services.

  2. Search for OpenCVE.

  3. Click Add instance to create and configure a new integration instance.

    ParameterDescriptionRequired
    Server URLTrue
    UsernameTrue
    PasswordTrue
    Source ReliabilityReliability of the source providing the intelligence data.True
    Trust any certificate (not secure)False
  4. Click Test to validate the URLs, token, and connection.

Commands#

You can execute these commands from the Cortex XSOAR CLI, as part of an automation, or in a playbook. After you successfully execute a command, a DBot message appears in the War Room with the command details.

opencve-latest#


Returns the latest updated CVEs from your reports.

Base Command#

opencve-latest

Input#

Argument NameDescriptionRequired
limitThe maximum number of CVEs to display.Optional
lastRunLast run.Optional

Context Output#

PathTypeDescription
CVE.IDStringThe ID of the CVE.
CVE.CVSSnumberThe CVSS score of the CVE.
CVE.PublishedDateThe date the CVE was published.
CVE.ModifiedDateThe date that the CVE was last modified.
CVE.DescriptionStringThe description of the CVE.
DBotScore.IndicatorStringThe indicator value.
DBotScore.ScoreNumberThe actual score.
DBotScore.TypeStringThe indicator type.
DBotScore.VendorStringThe vendor reporting the score of the indicator.

cve#


Returns CVE information by CVE ID.

Base Command#

cve

Input#

Argument NameDescriptionRequired
cveThe CVE ID. For example: CVE-2014-1234.Required

Context Output#

PathTypeDescription
CVE.IDStringThe ID of the CVE.
CVE.CVSSnumberThe CVSS score of the CVE.
CVE.PublishedDateThe date the CVE was published.
CVE.ModifiedDateThe date that the CVE was last modified.
CVE.DescriptionStringThe description of the CVE.
DBotScore.IndicatorStringThe indicator that was tested.
DBotScore.ScoreNumberThe indicator score.
DBotScore.TypeStringThe indicator type.
DBotScore.VendorStringThe vendor used to calculate the score.

opencve-get-my-vendors#


List the vendors subscriptions of the authenticated user.

Base Command#

opencve-get-my-vendors

Input#

Argument NameDescriptionRequired

Context Output#

PathTypeDescription
OpenCVE.VendorsunknownVendors.

opencve-get-my-products#


List the products subscriptions of the authenticated user.

Base Command#

opencve-get-my-products

Input#

Argument NameDescriptionRequired

Context Output#

PathTypeDescription
OpenCVE.ProductsunknownProducts.

opencve-get-vendor-cves#


Get vendor CVEs.

Base Command#

opencve-get-vendor-cves

Input#

Argument NameDescriptionRequired
vendor_nameVendor name.Required

Context Output#

PathTypeDescription
vendor_cvesunknownCVEs for the vendor.

opencve-get-product-cves#


Get product CVEs.

Base Command#

opencve-get-product-cves

Input#

Argument NameDescriptionRequired
vendor_nameVendor name.Required
product_nameProduct name.Required

Context Output#

PathTypeDescription
product_cvesunknownProduct CVEs.

opencve-get-reports#


List the reports of the authenticated user or get a specific report.

Base Command#

opencve-get-reports

Input#

Argument NameDescriptionRequired
report_idReport ID.Optional
pageSpecific page to start from.Optional

Context Output#

PathTypeDescription
reportsunknownReports.

opencve-get-alerts#


List the alerts of a report or get the details of a specific alert.

Base Command#

opencve-get-alerts

Input#

Argument NameDescriptionRequired
report_idThe report ID.Optional
pageSpecific page to start from.Optional
alert_idThe Alert ID.Optional

Context Output#

PathTypeDescription
alertsunknownThe Alerts from the provided Report ID.

opencve-get-products#


List the products associated to a vendor or get a specific one.

Base Command#

opencve-get-products

Input#

Argument NameDescriptionRequired
vendor_nameVendor name.Required
product_nameProduct name.Optional
searchFilter the search by a keyword.Optional
pageSpecific page to start from.Optional

Context Output#

PathTypeDescription
productsunknownProducts.

opencve-get-vendors#


List the products associated to a vendor or get a specific product of a vendor by specifying its name.

Base Command#

opencve-get-vendors

Input#

Argument NameDescriptionRequired
vendor_nameVendor name.Optional
searchFilter the search by a keyword.Optional
pageSpecific page to start from.Optional
letterFilter by the first letter.Optional

Context Output#

PathTypeDescription
vendorsunknownVendors.