CVEs API
GET /cve
List the CVEs.
Parameters:
search(optional): filter by keyword in CVE ID or Descriptionvendor(optional): filter by vendor nameproduct(optional): filter by product name (impliesvendorparameter)weakness(optional): filter by weakness namecvss(optional): filter by CVSS3.1 (one ofempty,low,medium,high,critical)tag(optional): filter by user tagpage(optional, default: 1): the page to start
Example request:
GET /api/cve?vendor=microsoft HTTP/1.1
Host: app.opencve.io
Accept: application/json
Example response:
HTTP/1.1 200 OK
{
"count": 20140,
"next": "https://app.opencve.io/api/cve?page=2&vendor=microsoft",
"previous": null,
"results": [
{
"created_at": "2024-10-23T01:09:30.580000Z",
"updated_at": "2024-11-06T20:39:55.200000Z",
"cve_id": "CVE-2024-31880",
"description": "IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to a denial of service, under specific configurations, as the server may crash when using a specially crafted SQL statement by an authenticated user."
},
...
]
}
GET /cve/<id>
Get the details of a specific CVE.
Parameters:
include(optional): include additional fields in the response (usenvd_cpe_configurationsto retrieve NVD CPE configurations).
Example request:
GET /api/cve/CVE-2024-31880?include=nvd_cpe_configurations HTTP/1.1
Host: app.opencve.io
Accept: application/json
Example response:
HTTP/1.1 200 OK
{
"created_at": "2024-10-23T01:09:30.580000Z",
"updated_at": "2024-11-06T20:39:55.200000Z",
"cve_id": "CVE-2024-31880",
"title": "IBM Db2 denial of service",
"description": "IBM Db2 for Linux, UNIX and Windows (includes Db2 Connect Server) 10.5, 11.1, and 11.5 is vulnerable to a denial of service, under specific configurations, as the server may crash when using a specially crafted SQL statement by an authenticated user.",
"metrics": {
"kev": {
"data": {},
"provider": null
},
"ssvc": {
"data": {
"options": {
"Automatable": "no",
"Exploitation": "none",
"Technical Impact": "partial"
},
"version": "2.0.3"
},
"provider": "vulnrichment"
},
"cvssV2_0": {
"data": {},
"provider": null
},
"cvssV3_0": {
"data": {},
"provider": null
},
"cvssV3_1": {
"data": {
"score": 5.3,
"vector": "CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:N/A:H"
},
"provider": "mitre"
},
"cvssV4_0": {
"data": {},
"provider": null
},
"threat_severity": {
"data": null,
"provider": null
}
},
"weaknesses": [
"CWE-770"
],
"vendors": [
"ibm",
"ibm$PRODUCT$db2",
"linux",
"linux$PRODUCT$linux_kernel",
"microsoft",
"microsoft$PRODUCT$windows",
"opengroup",
"opengroup$PRODUCT$unix"
],
"nvd_cpe_configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:ibm:db2:*:*:*:*:*:*:*:*",
"matchCriteriaId": "72264C00-9FD5-44EF-AE33-36819E253233",
"versionEndIncluding": "10.5.11",
"versionStartIncluding": "10.5.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ibm:db2:*:*:*:*:*:*:*:*",
"matchCriteriaId": "2E7ABF45-1720-49F0-AA78-E4C06815F3C5",
"versionEndIncluding": "11.1.4.7",
"versionStartIncluding": "11.1.4",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:ibm:db2:*:*:*:*:*:-:*:*",
"matchCriteriaId": "46EEFD88-1F1D-417F-815A-98A456DE8515",
"versionEndIncluding": "11.5.9",
"versionStartIncluding": "11.5",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
},
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:linux:linux_kernel:-:*:*:*:*:*:*:*",
"matchCriteriaId": "703AF700-7A70-47E2-BC3A-7FD03B3CA9C1",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:microsoft:windows:-:*:*:*:*:*:*:*",
"matchCriteriaId": "A2572D17-1DE6-457B-99CC-64AFD54487EA",
"vulnerable": false
},
{
"criteria": "cpe:2.3:o:opengroup:unix:-:*:*:*:*:*:*:*",
"matchCriteriaId": "6A90CB3A-9BE7-475C-9E75-6ECAD2106302",
"vulnerable": false
}
],
"negate": false,
"operator": "OR"
}
],
"operator": "AND"
}
]
}