search

CiscoPSIRT / openVulnAPI

Documentation and Tools for Cisco's PSIRT openVuln API
https://developer.cisco.com/psirt/
MIT License
102 stars 51 forks source link

openVulnQuery: product search should not be dependent on other arguments #23

Closed santosomar closed 7 years ago

santosomar commented 7 years ago

Product search should not be dependent on other arguments, such as "--all --advisory --cve --latest --severity --year is required"

According to the openVulnQuery documentation the product search can be: openVulnQuery --cvrf --product <string>

However, you get the following error when using that method.

omar@omar:~$ openVulnQuery --cvrf --product asa
usage: openVulnQuery [-h] (--cvrf | --oval)
                     (--all | --advisory API_RESOURCE | --cve API_RESOURCE | --latest API_RESOURCE | --severity API_RESOURCE | --year API_RESOURCE)
                     [--csv OUTPUT_FORMAT | --json OUTPUT_FORMAT] [--count]
                     [--fields {advisory_id,sir,first_published,last_updated,cves,cvss_base_score,advisory_title,publication_url,cwe,product_names,summary,oval_url,cvrf_url,bug_ids} [{advisory_id,sir,first_published,last_updated,cves,cvss_base_score,advisory_title,publication_url,cwe,product_names,summary,oval_url,cvrf_url,bug_ids} ...]]
openVulnQuery: error: one of the arguments --all --advisory --cve --latest --severity --year is required
santosomar commented 7 years ago

This is a false positive. The issue is not observed with the latest version of the openVulnQuery client.