CVE¶
| Resource | Operation | Description |
|---|---|---|
| CVE | GET /cve | Get the list of CVE. |
| GET /cve/(string:name) | Get a specific CVE. |
-
GET/cve¶ Get the list of CVE.
Example request:
GET /cve HTTP/1.1 Host: api.saucs.com Accept: application/json
Example response:
HTTP/1.1 200 OK Vary: Accept Content-Type: application/json [ { "created_at": "2017-10-11 19:29:00Z", "name": "CVE-2017-14370", "summary": "RSA Archer GRC Platform prior to 6.2.0.5 is affected by stored cross-site scripting via the Source Asset ID field. An authenticated attacker may potentially exploit this to execute arbitrary HTML in the user's browser session in the context of the affected RSA Archer application.", "updated_at": "2017-10-11 19:29:00Z" }, { "created_at": "2017-10-11 19:29:00Z", "name": "CVE-2017-14369", "summary": "RSA Archer GRC Platform prior to 6.2.0.5 is affected by a privilege escalation vulnerability. A low privileged RSA Archer user may potentially exploit this vulnerability to elevate their privileges and export certain application records.", "updated_at": "2017-10-11 19:29:00Z" } ]
Query Parameters: - page – page number. default is 1
- cvss – one of
low,medium,high
Response Headers: - Content-Type – application/json
Status Codes: - 200 OK – list of CVE found
-
GET/cve/(string: name)¶ Get a specific CVE.
Example request:
GET /cve/CVE-2017-14369 HTTP/1.1 Host: api.saucs.com Accept: application/json
Example response:
HTTP/1.1 200 OK Vary: Accept Content-Type: application/json { "cpes": [], "created_at": "2017-10-11 19:29:00Z", "cvss": { "access_complexity": null, "access_vector": null, "authentication": null, "availability_impact": null, "confidentiality_impact": null, "integrity_impact": null, "score": 0, "source": null }, "cwes": [], "name": "CVE-2017-14369", "references": [ { "description": "http://seclists.org/fulldisclosure/2017/Oct/12", "link": "http://seclists.org/fulldisclosure/2017/Oct/12", "source": "CONFIRM", "type": "UNKNOWN" } ], "summary": "RSA Archer GRC Platform prior to 6.2.0.5 is affected by a privilege escalation vulnerability. A low privileged RSA Archer user may potentially exploit this vulnerability to elevate their privileges and export certain application records.", "updated_at": "2017-10-11 19:29:00Z" }
Response Headers: - Content-Type – application/json
Status Codes: - 200 OK – CVE found
- 404 Not Found – CVE not found