CVE List V5
概要
Fetch CVE records straight from the CVEProject/cvelistV5 GitHub repository and import them as STIX 2.1 Vulnerability objects.
Alternative CVE connector that fetches updates directly from the CVEProject/cvelistV5 GitHub repository instead of querying the NVD REST API. The connector keeps a local clone of the upstream repository, uses git history to detect modified records between runs, and converts each CVE v5.1 record into STIX 2.1 Vulnerability objects. Workarounds, solutions, configurations and exploits exposed by upstream are attached as STIX Note objects. When the affected products of a CVE expose CPEs or version ranges, Software and Identity (vendor) objects are also created so analysts can model the exposure of their fleet.