cisa-kev
Description
A simple Ruby library for fetching and parsing the CISA KEV catalog.
Features
- Supports requesting the CISA KEV catalog via HTTP(s).
- Supports parsing previously downloaded JSON files.
Examples
“by require ‘cisa/kev’
catalog = CISA::KEV::Catalog.load catalog.select(&:known_ransomware_campaign_use).sort_by(&:date_added)
=>
[]
…
#CISA::KEV::Vulnerability:0x00007fc0a6e715f8
@cve_id=“CVE-2023-24955”,
@date_added=#Date: 2024-03-26 ((2460396j,0s,0n),+0s,2299161j),
@due_date=#Date: 2024-04-16 ((2460417j,0s,0n),+0s,2299161j),
@known_ransomware_campaign_use=true,
@notes=“https://msrc.microsoft.com/update-guide/vulnerability/CVE-2023-24955”,
@product=“SharePoint Server”,
@required_action=
“Apply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.”,
@short_description=
“Microsoft SharePoint Server contains a code injection vulnerability that allows an authenticated attacker with Site Owner privileges to execute code remotely.”,
@vendor_project=“Microsoft”,
@vulnerability_name=“Microsoft SharePoint Server Code Injection Vulnerability”>]
“
Requirements
- ruby >= 3.0.0
Install
“ell gem install cisa-kev
“
Gemfile
“by gem ‘cisa-kev’, ‘~> 0.1’
“
Copyright
Copyright (c) 2024 Hal Brodigan
See LICENSE for details.