Open TG1999 opened 1 year ago
I think using this may be a good start
>>> from cvss import CVSS3
>>> v = CVSS3("CVSS:3.0/AV:L/UI:N/AC:L/PR:H/C:N/I:L/A:H/S:C/E:U/RL:W/RC:X")
>>> v.as_json()
{'version': '3.0',
'vectorString': 'CVSS:3.0/AV:L/UI:N/AC:L/PR:H/C:N/I:L/A:H/S:C/E:U/RL:W/RC:X',
'attackVector': 'LOCAL',
'attackComplexity': 'LOW',
'privilegesRequired': 'HIGH',
'userInteraction': 'NONE',
'scope': 'CHANGED',
'confidentialityImpact': 'NONE',
'integrityImpact': 'LOW',
'availabilityImpact': 'HIGH',
'baseScore': 6.7,
'baseSeverity': 'MEDIUM',
'exploitCodeMaturity': 'UNPROVEN',
'remediationLevel': 'WORKAROUND',
'reportConfidence': 'NOT_DEFINED',
'temporalScore': 6.0,
'temporalSeverity': 'MEDIUM',
'confidentialityRequirement': 'NOT_DEFINED',
'integrityRequirement': 'NOT_DEFINED',
'availabilityRequirement': 'NOT_DEFINED',
'modifiedAttackVector': 'LOCAL',
'modifiedAttackComplexity': 'LOW',
'modifiedPrivilegesRequired': 'HIGH',
'modifiedUserInteraction': 'NONE',
'modifiedConfidentialityImpact': 'NONE',
'modifiedIntegrityImpact': 'LOW',
'modifiedAvailabilityImpact': 'HIGH',
'environmentalScore': 6.0,
'environmentalSeverity': 'MEDIUM'}
We currently do not display CVSS vectors in the vulnerability details view and do not allow the the capability to search by a CVSS vector