I'm trying to get the best of both APIs. In the PSS API there's a PSIRT service to which you provide a device ID and get a list with all the alert IDs for this device. You can then use the alert ID to get details for the alert. Where I'm struggling is that this alert ID (for ex. 519) is not available in the openVuln API. In the openVuln API the unique ID seems to be the CVE (ex. CVE-2016-1321) or the ID (cisco-sa-20160212-usc), which is not available in the PSS API.
Are there any plans for either of these 2 APIs to include a unique ID, which can be used in both APIs?
Or is there any kind of list which matches alert ID to CVE (or similar)?
You are doing great job and going in the right direction with this API. Additionally a suggestion from me would be a functionality to get not only the last XX advisories, but the advisories with last updated date after DD-MM-YYYY.
While there is no one right way to code, if you do not take some time beforehand to prepare, plan, and strategize? You likely will hit major roadblocks, large code restructuring needs, and lost time fixing more bugs because of it.
At some point you may be asked to complete a vulnerability audit of your network estate. In the past this would have required searching a near endless list of Cisco vulnerabilities and then cross referencing these against an even longer list of BugIds. T...
Cisco continues to provide leadership in the development of new security standards. For example, Cisco is one of the main contributors to the OASIS Common Security Advisory Framework (CSAF) and Cisco provides Common Vulnerability Reporting Framework (CVRF...
Security automation is a hot topic these days. Most organizations have many systems to patch and configure securely, with numerous versions of software and features enabled. Many security administrators are seeking ways to leverage standards and available...