Display CVSS vectors and allow their search #1239

TG1999 · 2023-07-19T04:33:29Z

We currently do not display CVSS vectors in the vulnerability details view and do not allow the the capability to search by a CVSS vector

ziadhany · 2023-07-19T16:55:57Z

I think using this may be a good start

>>> from cvss import CVSS3
>>> v = CVSS3("CVSS:3.0/AV:L/UI:N/AC:L/PR:H/C:N/I:L/A:H/S:C/E:U/RL:W/RC:X")
>>> v.as_json()
{'version': '3.0',
 'vectorString': 'CVSS:3.0/AV:L/UI:N/AC:L/PR:H/C:N/I:L/A:H/S:C/E:U/RL:W/RC:X',
 'attackVector': 'LOCAL',
 'attackComplexity': 'LOW',
 'privilegesRequired': 'HIGH',
 'userInteraction': 'NONE',
 'scope': 'CHANGED',
 'confidentialityImpact': 'NONE',
 'integrityImpact': 'LOW',
 'availabilityImpact': 'HIGH',
 'baseScore': 6.7,
 'baseSeverity': 'MEDIUM',
 'exploitCodeMaturity': 'UNPROVEN',
 'remediationLevel': 'WORKAROUND',
 'reportConfidence': 'NOT_DEFINED',
 'temporalScore': 6.0,
 'temporalSeverity': 'MEDIUM',
 'confidentialityRequirement': 'NOT_DEFINED',
 'integrityRequirement': 'NOT_DEFINED',
 'availabilityRequirement': 'NOT_DEFINED',
 'modifiedAttackVector': 'LOCAL',
 'modifiedAttackComplexity': 'LOW',
 'modifiedPrivilegesRequired': 'HIGH',
 'modifiedUserInteraction': 'NONE',
 'modifiedConfidentialityImpact': 'NONE',
 'modifiedIntegrityImpact': 'LOW',
 'modifiedAvailabilityImpact': 'HIGH',
 'environmentalScore': 6.0,
 'environmentalSeverity': 'MEDIUM'}

ziadhany mentioned this issue Sep 29, 2023

Add support for CVSS vectors display #1312

Merged

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Display CVSS vectors and allow their search #1239

Display CVSS vectors and allow their search #1239

TG1999 commented Jul 19, 2023

ziadhany commented Jul 19, 2023

Display CVSS vectors and allow their search #1239

Display CVSS vectors and allow their search #1239

Comments

TG1999 commented Jul 19, 2023

ziadhany commented Jul 19, 2023