Documentation
¶
Index ¶
- func Fetch(opts ...Option) error
- type CPEMatch
- type CVE
- type CVETags
- type CVSSMetricV2
- type CVSSMetricV30
- type CVSSMetricV31
- type CVSSMetricV40
- type CVSSV20
- type CVSSV30
- type CVSSV31
- type CVSSV40
- type Config
- type LangString
- type Metrics
- type Node
- type Option
- func WithAPIKey(apiKey string) Option
- func WithBaseURL(url string) Option
- func WithConcurrency(concurrency int) Option
- func WithDir(dir string) Option
- func WithLastModEndDate(lastModEndDate *time.Time) Option
- func WithLastModStartDate(lastModStartDate *time.Time) Option
- func WithResultsPerPage(resultsPerPage int) Option
- func WithRetry(retry int) Option
- func WithRetryWaitMax(wait time.Duration) Option
- func WithRetryWaitMin(wait time.Duration) Option
- func WithWait(wait time.Duration) Option
- type Reference
- type VendorComment
- type Weakness
Constants ¶
This section is empty.
Variables ¶
This section is empty.
Functions ¶
Types ¶
type CPEMatch ¶
type CPEMatch struct {
Vulnerable bool `json:"vulnerable"`
Criteria string `json:"criteria"`
MatchCriteriaID string `json:"matchCriteriaId"`
VersionStartExcluding string `json:"versionStartExcluding,omitempty"`
VersionStartIncluding string `json:"versionStartIncluding,omitempty"`
VersionEndExcluding string `json:"versionEndExcluding,omitempty"`
VersionEndIncluding string `json:"versionEndIncluding,omitempty"`
}
CPE match string or range
type CVE ¶
type CVE struct {
ID string `json:"id"`
SourceIdentifier string `json:"sourceIdentifier,omitempty"`
VulnStatus string `json:"vulnStatus,omitempty"`
Published string `json:"published"`
LastModified string `json:"lastModified"`
EvaluatorComment string `json:"evaluatorComment,omitempty"`
EvaluatorSolution string `json:"evaluatorSolution,omitempty"`
EvaluatorImpact string `json:"evaluatorImpact,omitempty"`
CISAExploitAdd string `json:"cisaExploitAdd,omitempty"`
CISAActionDue string `json:"cisaActionDue,omitempty"`
CISARequiredAction string `json:"cisaRequiredAction,omitempty"`
CISAVulnerabilityName string `json:"cisaVulnerabilityName,omitempty"`
CVETags []CVETags `json:"cveTags,omitempty"`
Descriptions []LangString `json:"descriptions"`
References []Reference `json:"references"`
Metrics Metrics `json:"metrics,omitzero"`
Weaknesses []Weakness `json:"weaknesses,omitempty"`
Configurations []Config `json:"configurations,omitempty"`
VendorComments []VendorComment `json:"vendorComments,omitempty"`
}
Top level structure that fetch command stores CVE json files
type CVSSMetricV2 ¶
type CVSSMetricV2 struct {
Source string `json:"source"`
Type string `json:"type"`
CvssData CVSSV20 `json:"cvssData"`
BaseSeverity string `json:"baseSeverity,omitempty"`
ExploitabilityScore float64 `json:"exploitabilityScore,omitempty"`
ImpactScore float64 `json:"impactScore,omitempty"`
ACInsufInfo bool `json:"acInsufInfo,omitempty"`
ObtainAllPrivilege bool `json:"obtainAllPrivilege,omitempty"`
ObtainUserPrivilege bool `json:"obtainUserPrivilege,omitempty"`
ObtainOtherPrivilege bool `json:"obtainOtherPrivilege,omitempty"`
UserInteractionRequired bool `json:"userInteractionRequired,omitempty"`
}
type CVSSMetricV30 ¶
type CVSSMetricV31 ¶
type CVSSMetricV40 ¶
type CVSSV20 ¶
type CVSSV20 struct {
// CVSS Version
Version string `json:"version"`
VectorString string `json:"vectorString"`
AccessVector string `json:"accessVector,omitempty"`
AccessComplexity string `json:"accessComplexity,omitempty"`
Authentication string `json:"authentication,omitempty"`
ConfidentialityImpact string `json:"confidentialityImpact,omitempty"`
IntegrityImpact string `json:"integrityImpact,omitempty"`
AvailabilityImpact string `json:"availabilityImpact,omitempty"`
BaseScore float64 `json:"baseScore"`
Exploitability string `json:"exploitability,omitempty"`
RemediationLevel string `json:"remediationLevel,omitempty"`
ReportConfidence string `json:"reportConfidence,omitempty"`
TemporalScore float64 `json:"temporalScore,omitempty"`
CollateralDamagePotential string `json:"collateralDamagePotential,omitempty"`
TargetDistribution string `json:"targetDistribution,omitempty"`
ConfidentialityRequirement string `json:"confidentialityRequirement,omitempty"`
IntegrityRequirement string `json:"integrityRequirement,omitempty"`
AvailabilityRequirement string `json:"availabilityRequirement,omitempty"`
EnvironmentalScore float64 `json:"environmentalScore,omitempty"`
}
https://csrc.nist.gov/schema/nvd/api/2.0/external/cvss-v2.0.json
type CVSSV30 ¶
type CVSSV30 struct {
// CVSS Version
Version string `json:"version"`
VectorString string `json:"vectorString"`
AttackVector string `json:"attackVector,omitempty"`
AttackComplexity string `json:"attackComplexity,omitempty"`
PrivilegesRequired string `json:"privilegesRequired,omitempty"`
UserInteraction string `json:"userInteraction,omitempty"`
Scope string `json:"scope,omitempty"`
ConfidentialityImpact string `json:"confidentialityImpact,omitempty"`
IntegrityImpact string `json:"integrityImpact,omitempty"`
AvailabilityImpact string `json:"availabilityImpact,omitempty"`
BaseScore float64 `json:"baseScore"`
BaseSeverity string `json:"baseSeverity"`
ExploitCodeMaturity string `json:"exploitCodeMaturity,omitempty"`
RemediationLevel string `json:"remediationLevel,omitempty"`
ReportConfidence string `json:"reportConfidence,omitempty"`
TemporalScore *float64 `json:"temporalScore,omitempty"`
TemporalSeverity string `json:"temporalSeverity,omitempty"`
ConfidentialityRequirement string `json:"confidentialityRequirement,omitempty"`
IntegrityRequirement string `json:"integrityRequirement,omitempty"`
AvailabilityRequirement string `json:"availabilityRequirement,omitempty"`
ModifiedAttackVector string `json:"modifiedAttackVector,omitempty"`
ModifiedAttackComplexity string `json:"modifiedAttackComplexity,omitempty"`
ModifiedPrivilegesRequired string `json:"modifiedPrivilegesRequired,omitempty"`
ModifiedUserInteraction string `json:"modifiedUserInteraction,omitempty"`
ModifiedScope string `json:"modifiedScope,omitempty"`
ModifiedConfidentialityImpact string `json:"modifiedConfidentialityImpact,omitempty"`
ModifiedIntegrityImpact string `json:"modifiedIntegrityImpact,omitempty"`
ModifiedAvailabilityImpact string `json:"modifiedAvailabilityImpact,omitempty"`
EnvironmentalScore *float64 `json:"environmentalScore,omitempty"`
EnvironmentalSeverity string `json:"environmentalSeverity,omitempty"`
}
https://csrc.nist.gov/schema/nvd/api/2.0/external/cvss-v3.0.json
type CVSSV31 ¶
type CVSSV31 struct {
// CVSS Version
Version string `json:"version"`
VectorString string `json:"vectorString"`
AttackVector string `json:"attackVector,omitempty"`
AttackComplexity string `json:"attackComplexity,omitempty"`
PrivilegesRequired string `json:"privilegesRequired,omitempty"`
UserInteraction string `json:"userInteraction,omitempty"`
Scope string `json:"scope,omitempty"`
ConfidentialityImpact string `json:"confidentialityImpact,omitempty"`
IntegrityImpact string `json:"integrityImpact,omitempty"`
AvailabilityImpact string `json:"availabilityImpact,omitempty"`
BaseScore float64 `json:"baseScore"`
BaseSeverity string `json:"baseSeverity"`
ExploitCodeMaturity string `json:"exploitCodeMaturity,omitempty"`
RemediationLevel string `json:"remediationLevel,omitempty"`
ReportConfidence string `json:"reportConfidence,omitempty"`
TemporalScore float64 `json:"temporalScore,omitempty"`
TemporalSeverity string `json:"temporalSeverity,omitempty"`
ConfidentialityRequirement string `json:"confidentialityRequirement,omitempty"`
IntegrityRequirement string `json:"integrityRequirement,omitempty"`
AvailabilityRequirement string `json:"availabilityRequirement,omitempty"`
ModifiedAttackVector string `json:"modifiedAttackVector,omitempty"`
ModifiedAttackComplexity string `json:"modifiedAttackComplexity,omitempty"`
ModifiedPrivilegesRequired string `json:"modifiedPrivilegesRequired,omitempty"`
ModifiedUserInteraction string `json:"modifiedUserInteraction,omitempty"`
ModifiedScope string `json:"modifiedScope,omitempty"`
ModifiedConfidentialityImpact string `json:"modifiedConfidentialityImpact,omitempty"`
ModifiedIntegrityImpact string `json:"modifiedIntegrityImpact,omitempty"`
ModifiedAvailabilityImpact string `json:"modifiedAvailabilityImpact,omitempty"`
EnvironmentalScore float64 `json:"environmentalScore,omitempty"`
EnvironmentalSeverity string `json:"environmentalSeverity,omitempty"`
}
https://csrc.nist.gov/schema/nvd/api/2.0/external/cvss-v3.1.json
type CVSSV40 ¶
type CVSSV40 struct {
// CVSS Version
Version string `json:"version"`
VectorString string `json:"vectorString"`
BaseScore float64 `json:"baseScore"`
BaseSeverity string `json:"baseSeverity"`
AttackVector *string `json:"attackVector,omitempty"`
AttackComplexity *string `json:"attackComplexity,omitempty"`
AttackRequirements *string `json:"attackRequirements,omitempty"`
PrivilegesRequired *string `json:"privilegesRequired,omitempty"`
UserInteraction *string `json:"userInteraction,omitempty"`
VulnerableSystemConfidentiality *string `json:"vulnerableSystemConfidentiality,omitempty"` // schema property: vulnConfidentialityImpact
VulnerableSystemIntegrity *string `json:"vulnerableSystemIntegrity,omitempty"` // schema property: vulnIntegrityImpact
VulnerableSystemAvailability *string `json:"vulnerableSystemAvailability,omitempty"` // schema property: vulnAvailabilityImpact
SubsequentSystemConfidentiality *string `json:"subsequentSystemConfidentiality,omitempty"` // schema property: subConfidentialityImpact
SubsequentSystemIntegrity *string `json:"subsequentSystemIntegrity,omitempty"` // schema property: subIntegrityImpact
SubsequentSystemAvailability *string `json:"subsequentSystemAvailability,omitempty"` // schema property: subAvailabilityImpact
ExploitMaturity *string `json:"exploitMaturity,omitempty"`
ConfidentialityRequirement *string `json:"confidentialityRequirements,omitempty"`
IntegrityRequirement *string `json:"integrityRequirements,omitempty"`
AvailabilityRequirement *string `json:"availabilityRequirements,omitempty"`
ModifiedAttackVector *string `json:"modifiedAttackVector,omitempty"`
ModifiedAttackComplexity *string `json:"modifiedAttackComplexity,omitempty"`
ModifiedAttackRequirements *string `json:"modifiedAttackRequirements,omitempty"`
ModifiedPrivilegesRequired *string `json:"modifiedPrivilegesRequired,omitempty"`
ModifiedUserInteraction *string `json:"modifiedUserInteraction,omitempty"`
ModifiedVulnerableSystemConfidentiality *string `json:"modifiedVulnerableSystemConfidentiality,omitempty"` // schema property: modifiedVulnConfidentialityImpact
ModifiedVulnerableSystemIntegrity *string `json:"modifiedVulnerableSystemIntegrity,omitempty"` // schema property: modifiedVulnIntegrityImpact
ModifiedVulnerableSystemAvailability *string `json:"modifiedVulnerableSystemAvailability,omitempty"` // schema property: modifiedVulnAvailabilityImpact
ModifiedSubsequentSystemConfidentiality *string `json:"modifiedSubsequentSystemConfidentiality,omitempty"` // schema property: modifiedSubConfidentialityImpact
ModifiedSubsequentSystemIntegrity *string `json:"modifiedSubsequentSystemIntegrity,omitempty"` // schema property: modifiedSubIntegrityImpact
ModifiedSubsequentSystemAvailability *string `json:"modifiedSubsequentSystemAvailability,omitempty"` // schema property: modifiedSubAvailabilityImpact
Safety *string `json:"safety,omitempty"` // schema property: Safety
Automatable *string `json:"automatable,omitempty"` // schema property: Automatable
ProviderUrgency *string `json:"providerUrgency,omitempty"`
Recovery *string `json:"recovery,omitempty"` // schema property: Recovery
ValueDensity *string `json:"valueDensity,omitempty"`
VulnerabilityResponseEffort *string `json:"vulnerabilityResponseEffort,omitempty"`
ThreatScore *float64 `json:"threatScore,omitempty"`
ThreatSeverity *string `json:"threatSeverity,omitempty"`
EnvironmentalScore *float64 `json:"environmentalScore,omitempty"`
EnvironmentalSeverity *string `json:"environmentalSeverity,omitempty"`
}
https://csrc.nist.gov/schema/nvd/api/2.0/external/cvss-v4.0.json
type LangString ¶
type Metrics ¶
type Metrics struct {
// CVSS V2.0 score.
CVSSMetricV2 []CVSSMetricV2 `json:"cvssMetricV2,omitempty"`
// CVSS V3.0 score.
CVSSMetricV30 []CVSSMetricV30 `json:"cvssMetricV30,omitempty"`
// CVSS V3.1 score.
CVSSMetricV31 []CVSSMetricV31 `json:"cvssMetricV31,omitempty"`
// CVSS V4.0 score.
CVSSMetricV40 []CVSSMetricV40 `json:"cvssMetricV40,omitempty"`
}
Metric scores for a vulnerability as found on NVD.
type Node ¶
type Node struct {
Operator string `json:"operator"`
Negate bool `json:"negate,omitempty"`
CPEMatch []CPEMatch `json:"cpeMatch"`
}
Defines a configuration node in an NVD applicability statement.
type Option ¶
type Option interface {
// contains filtered or unexported methods
}
func WithAPIKey ¶
func WithBaseURL ¶
func WithConcurrency ¶
func WithLastModEndDate ¶
func WithLastModStartDate ¶
func WithResultsPerPage ¶
func WithRetryWaitMax ¶
func WithRetryWaitMin ¶
type VendorComment ¶
type Weakness ¶
type Weakness struct {
Source string `json:"source"`
Type string `json:"type"`
Description []LangString `json:"description"`
}
Source Files
Click to show internal directories.
Click to hide internal directories.