search

ra1nb0rn / search_vulns

Search for known vulnerabilities in software using software titles or a CPE 2.3 string
https://search-vulns.com
MIT License
24 stars 5 forks source link

Add CISA-KEV search #6

Closed priamai closed 4 days ago

priamai commented 4 days ago

Hi there, what about adding also the KEV database? Since you support already NVD++ we can just leverage their APIS? https://docs.vulncheck.com/community/vulncheck-kev/introduction or I guess directly the CISA repository? Cheers.

ra1nb0rn commented 4 days ago

Hi @priamai , thanks for your feature request.

I'm not quite sure what you're asking for, though. CISA's KEV database is already incorporated through the NVD. So for example if you search for GitLab 16.7.1 via the web interface, you will notice that CVE-2023-7028 is highlighted in red and flagged with a skull, see https://search-vulns.com/?query=cpe%3A2.3%3Aa%3Agitlab%3Agitlab%3A16.7.1%3A%3A%3A%3A-%3A%3A%3A&is-good-cpe=false. If you click on the red skull, the entry is opened on CISA's page in a new tab.

Could you provide some more details about your request?

priamai commented 4 days ago

Ohhh I am a dufus I didn't notice yes this is perfect!

ra1nb0rn commented 4 days ago

No worries! I'm happy you like the current solution.

Since this is solved, I'm closing the issue. If anything else comes up, feel free to open another one.