Cisco continues to provide leadership in the development of new security
standards. For example, Cisco is one of the main contributors to the
OASIS Common Security Advisory Framework (CSAF) and Cisco provides
Common Vulnerability Reporting Framework (CVRF...
Cisco Support APIs allow Partner Support Services (PSS) partners and
Smart Net Total Care (SNTC) customers to programmatically access and
consume Cisco data in the cloud in a simple, secure and scalable manner.
And now the Support APIs' documentation, for...
One of the questions I often hear from customers is "Support APIs?? Can
they access my SNTC Portal data?" In short, no, the Support APIs know
nothing of your install base.The Support APIs are simple, REST-based
APIs that grew from Cisco's Support web site...
The Cisco PSIRT openVuln API is a RESTful API that allows customers to
obtain Cisco security vulnerability information in different
machine-consumable formats. It supports industrywide security standards
such as the Common Vulnerability Reporting Framewor...
Today I am joining forces with the OASIS standards body to launch the
Common Security Advisory Framework (CSAF) Technical Committee (TC). The
purpose of the CSAF Technical Committee is to standardize the practices
for structured machine-readable security ...
Parash Ghimire and Bradley Korabik have been working with the Cisco
Product Security Incident Response Team (PSIRT) for the last few months,
as part of a summer internship. During this time they created a new tool
to query and interact with the the Cisco ...
The Common Vulnerability Scoring System (CVSS), which is used by many in
the industry as a standard way to assess and score security
vulnerabilities, is evolving to a new version known as CVSSv3. These
changes addressed some of the challenges that existed...
Cisco PSIRT just released a beta Swagger YAML file to help you learn,
test, and integrate with the Cisco PSIRT openVuln API.Swagger is a very
powerful open source framework for RESTful APIs that was developed by
the folks at SmartBear. It provides numerou...
In October, we announced details about Cisco PSIRT’s new and improved
security vulnerability disclosure format. Our Chief Security and Trust
Officer, John Stewart, also revealed that Cisco will launch an
application programming interface (API) that empowe...
Cisco is committed to protecting customers by sharing critical
security-related information in different formats. Guided by customer
feedback, Cisco’s Product Security Incident Response Team (PSIRT) is
seeking ways to improve how we communicate informatio...
I'm testing the ASD API and when specifying the CSR1000V as PID, it returns as invalid PID:
w_adv = requests.get(url="https://api.cisco.com/software/v3.0/metadata/pid/CSR1000V/image_names"
The CVRF download of Security Advisories previously included list elements within a list of Product Names and IOS/XE version information in a product_names column. The IOS and IOSXE version numbers have since been removed from the data. Without the IOS/XE...
How to map the individual Security Advisories from the email notifications to the list in the Cisco Services Connection PSIRT Dashboard Portal? The Security Advisories in the portal does not list the advisories in the email notification. User requires the...
We are implementing a new Learning Management System (Litmos) and we are unable to integrate the Web Ex Training Environment into this site. I have been getting the run around for weeks- can someone PLEASE help.
Hello all, I am trying to extract from SNTC a list of SN's and IP's based on a PID. However it dosen't look like that feature is available. The use case here is to dynamically populate a CMDB. Please let me know if you have any ins...