nvd

package
v2.1.1-stackrox+incomp... Latest Latest
Warning

This package is not in the latest version of its module.

Go to latest
Published: Oct 8, 2019 License: Apache-2.0 Imports: 18 Imported by: 0

Documentation

Overview

Package nvd implements a vulnerability metadata appender using the NIST NVD database.

Index

Constants

This section is empty.

Variables

This section is empty.

Functions

func SeverityFromCVSS

func SeverityFromCVSS(score float64) database.Severity

SeverityFromCVSS converts the CVSS Score (0.0 - 10.0) into a database.Severity following the qualitative rating scale available in the CVSS v3.0 specification (https://www.first.org/cvss/specification-document), Table 14.

The Negligible level is set for CVSS scores between [0, 1), replacing the specified None level, originally used for a score of 0.

Types

type NVDMetadata

type NVDMetadata struct {
	CVSSv2 NVDmetadataCVSSv2
	CVSSv3 NVDmetadataCVSSv3
}

type NVDmetadataCVSSv2

type NVDmetadataCVSSv2 struct {
	PublishedDateTime   string
	Vectors             string
	Score               float64
	ExploitabilityScore float64
	ImpactScore         float64
}

type NVDmetadataCVSSv3

type NVDmetadataCVSSv3 struct {
	Vectors             string
	Score               float64
	ExploitabilityScore float64
	ImpactScore         float64
}

Jump to

Keyboard shortcuts

? : This menu
/ : Search site
f or F : Jump to
y or Y : Canonical URL