Make NVD results accessible from the API

cve-search / vulnerability-lookup

Vulnerability Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streamlines the management of Coordinated Vulnerability Disclosure (CVD).

https://cve-search.github.io/vulnerability-lookup/

GNU Affero General Public License v3.0

108 stars 13 forks source link

Make NVD results accessible from the API #31

Closed svniedner closed 5 months ago

svniedner commented 5 months ago

From what I see, when querying the API with a CVE ID, only cvelist5 results are returned. Is it possible to also obtaion the NVD data structure in JSON form? Best, Sven

Rafiot commented 5 months ago

Not easily. We opted for the cvelistv5 format by default for the CVEs, because it is often more complete, and seems to be the default on the long run. Is there any specific reason you want the other one?

..... nevermind, scrap that.

There is an undocumented flat that will put the NVD entry as a meta:

curl -X 'GET'   'https://vulnerability.circl.lu/api/cve/cve-2024-25503?with_meta=1'   -H 'accept: application/json'

svniedner commented 5 months ago

Oh, thanks, that helps for the moment! I am currently creating supersets of available information, so I am also interested in the NVD data sets, especially as they have been collected anyhow.