admin/nvd-json-data-feeds
1
0
Fork 0
mirror of https://github.com/fkie-cad/nvd-json-data-feeds.git synced 2025-06-08 05:57:39 +00:00
Code Issues Packages Projects Releases Wiki Activity
nvd-json-data-feeds/_scripts/contrib/schema/cve_item-v2.0.schema.json

214 lines
6.7 KiB
JSON
Raw Blame History

{
"$schema": "http://json-schema.org/draft-07/schema",
"title": "Modified JSON Schema for cve_items returned by the NVD Vulnerability Data API version 2.0",
"definitions": {
"cvss-v2": {
"properties": {
"source": { "type": "string" },
"type": { "enum": ["Primary", "Secondary"] },
"cvssData": {
"$ref": "cvss-v2.0.schema.json"
},
"baseSeverity": { "type": "string" },
"exploitabilityScore": { "$ref": "#/definitions/def_subscore" },
"impactScore": { "$ref": "#/definitions/def_subscore" },
"acInsufInfo": { "type": "boolean" },
"obtainAllPrivilege": { "type": "boolean" },
"obtainUserPrivilege": { "type": "boolean" },
"obtainOtherPrivilege": { "type": "boolean" },
"userInteractionRequired": { "type": "boolean" }
},
"required": ["source", "type", "cvssData"],
"additionalProperties": false
},
"cvss-v30": {
"properties": {
"source": { "type": "string" },
"type": { "enum": ["Primary", "Secondary"] },
"cvssData": {
"$ref": "cvss-v3.0.schema.json"
},
"exploitabilityScore": { "$ref": "#/definitions/def_subscore" },
"impactScore": { "$ref": "#/definitions/def_subscore" }
},
"required": ["source", "type", "cvssData"],
"additionalProperties": false
},
"cvss-v31": {
"properties": {
"source": { "type": "string" },
"type": { "enum": ["Primary", "Secondary"] },
"cvssData": {
"$ref": "cvss-v3.1.schema.json"
},
"exploitabilityScore": { "$ref": "#/definitions/def_subscore" },
"impactScore": { "$ref": "#/definitions/def_subscore" }
},
"required": ["source", "type", "cvssData"],
"additionalProperties": false
},
"cve_id": {
"type": "string",
"pattern": "^CVE-[0-9]{4}-[0-9]{4,}$"
},
"lang_string": {
"type": "object",
"properties": {
"lang": { "type": "string" },
"value": { "type": "string", "maxLength": 4096 }
},
"required": ["lang", "value"],
"additionalProperties": false
},
"reference": {
"type": "object",
"properties": {
"url": {
"maxLength": 500,
"type": "string",
"pattern": "^(ftp|http)s?://\\S+$"
},
"source": { "type": "string" },
"tags": {
"type": "array",
"items": { "type": "string" }
}
},
"required": ["url"],
"additionalProperties": false
},
"vendorComment": {
"type": "object",
"properties": {
"organization": { "type": "string" },
"comment": { "type": "string" },
"lastModified": { "type": "string", "format": "iso-date-time" }
},
"required": ["organization", "comment", "lastModified"],
"additionalProperties": false
},
"weakness": {
"properties": {
"source": { "type": "string" },
"type": { "type": "string" },
"description": {
"type": "array",
"minItems": 0,
"items": { "$ref": "#/definitions/lang_string" }
}
},
"required": ["source", "type", "description"],
"additionalProperties": false
},
"config": {
"properties": {
"operator": { "type": "string", "enum": ["AND", "OR"] },
"negate": { "type": "boolean" },
"nodes": { "type": "array", "items": { "$ref": "#/definitions/node" } }
},
"required": ["nodes"],
"additionalProperties": false
},
"node": {
"description": "Defines a configuration node in an NVD applicability statement.",
"properties": {
"operator": { "type": "string", "enum": ["AND", "OR"] },
"negate": { "type": "boolean" },
"cpeMatch": {
"type": "array",
"items": { "$ref": "#/definitions/cpe_match" }
}
},
"required": ["operator", "cpeMatch"],
"additionalProperties": false
},
"cpe_match": {
"description": "CPE match string or range",
"type": "object",
"properties": {
"vulnerable": { "type": "boolean" },
"criteria": { "type": "string" },
"matchCriteriaId": { "type": "string", "format": "uuid" },
"versionStartExcluding": { "type": "string" },
"versionStartIncluding": { "type": "string" },
"versionEndExcluding": { "type": "string" },
"versionEndIncluding": { "type": "string" }
},
"required": ["vulnerable", "criteria", "matchCriteriaId"],
"additionalProperties": false
},
"def_subscore": {
"description": "CVSS subscore.",
"type": "number",
"minimum": 0,
"maximum": 10
}
},
"type": "object",
"properties": {
"id": { "$ref": "#/definitions/cve_id" },
"sourceIdentifier": { "type": "string" },
"vulnStatus": { "type": "string" },
"published": { "type": "string", "format": "iso-date-time" },
"lastModified": { "type": "string", "format": "iso-date-time" },
"evaluatorComment": { "type": "string" },
"evaluatorSolution": { "type": "string" },
"evaluatorImpact": { "type": "string" },
"cisaExploitAdd": { "type": "string", "format": "date" },
"cisaActionDue": { "type": "string", "format": "date" },
"cisaRequiredAction": { "type": "string" },
"cisaVulnerabilityName": { "type": "string" },
"descriptions": {
"type": "array",
"minItems": 1,
"items": { "$ref": "#/definitions/lang_string" }
},
"references": {
"type": "array",
"items": { "$ref": "#/definitions/reference" },
"maxItems": 500,
"minItems": 0
},
"metrics": {
"description": "Metric scores for a vulnerability as found on NVD.",
"type": "object",
"properties": {
"cvssMetricV31": {
"description": "CVSS V3.1 score.",
"type": "array",
"items": { "$ref": "#/definitions/cvss-v31" }
},
"cvssMetricV30": {
"description": "CVSS V3.0 score.",
"type": "array",
"items": { "$ref": "#/definitions/cvss-v30" }
},
"cvssMetricV2": {
"description": "CVSS V2.0 score.",
"type": "array",
"items": { "$ref": "#/definitions/cvss-v2" }
}
},
"additionalProperties": false
},
"weaknesses": {
"type": "array",
"items": { "$ref": "#/definitions/weakness" }
},
"configurations": {
"type": "array",
"items": { "$ref": "#/definitions/config" }
},
"vendorComments": {
"type": "array",
"items": { "$ref": "#/definitions/vendorComment" }
}
},
"required": ["id", "published", "lastModified", "references", "descriptions"],
"additionalProperties": false
}
Reference in New Issue View Git Blame Copy Permalink