Add CustomerActionRequired field to CVEs
This commit is contained in:
Luis Plascencia
Родитель
cc1e033fa2
Коммит
d6519cbf4e
|
|
@ -129,6 +129,7 @@ PrivateData = @{
|
|||
|
||||
# ReleaseNotes of this module
|
||||
ReleaseNotes = @'
|
||||
November 25, 2024 - Adding Customer Action Required field
|
||||
April 16, 2024 - Adding CWE info
|
||||
April 18, 2023 - Adding compatibility with Linux
|
||||
April 17, 2023 - Add Exploitability Index Link
|
||||
|
|
|
|||
|
|
@ -83,6 +83,11 @@ Process {
|
|||
).Description.Value
|
||||
);
|
||||
Weakness = $v.CWE.Value ;
|
||||
'Customer Action Required' = if ($customerActionNotes = $v.Notes | Where-Object { $_.Title -eq "Customer Action Required" }) {
|
||||
$customerActionNotes
|
||||
} else {
|
||||
'Yes'
|
||||
} ;
|
||||
RestartRequired = $(
|
||||
(
|
||||
$v.Remediations |
|
||||
|
|
|
|||
|
|
@ -66,6 +66,11 @@ Process {
|
|||
Description = $(
|
||||
($v.Notes | Where-Object { $_.Title -eq 'Description' }).Value
|
||||
) ;
|
||||
'Customer Action Required' = if ($customerActionNotes = $v.Notes | Where-Object { $_.Title -eq "Customer Action Required" }) {
|
||||
$customerActionNotes
|
||||
} else {
|
||||
'Yes'
|
||||
} ;
|
||||
'Maximum Severity Rating' = $(
|
||||
Get-MaxSeverity ($v.Threats | Where-Object {$_.Type -eq $MaximumSeverityType } ).Description.Value | Select-Object -Unique
|
||||
) ;
|
||||
|
|
|
|||
|
|
@ -41,6 +41,11 @@ Process {
|
|||
CVE = $v.CVE
|
||||
Title = $v.Title.Value
|
||||
Weakness = $(if ($v.CWE) { '{0} : {1}' -f "$($v.CWE.ID)","$($v.CWE.Value)"})
|
||||
'Customer Action Required' = if ($customerActionNotes = $v.Notes | Where-Object { $_.Title -eq "Customer Action Required" }) {
|
||||
$customerActionNotes
|
||||
} else {
|
||||
'Yes'
|
||||
} ;
|
||||
PubliclyDisclosed = $es.PubliclyDisclosed
|
||||
Exploited = $es.Exploited
|
||||
LatestSoftwareRelease = $es.LatestSoftwareRelease
|
||||
|
|
|
|||
|
|
@ -109,6 +109,7 @@ For details on affected software, see the next section, Affected Software.
|
|||
<td><b>CVE ID</b></td>
|
||||
<td><b>Vulnerability Description</b></td>
|
||||
<td><b>Weakness</b></td>
|
||||
<td><b>Customer Action Required</b></td>
|
||||
<td><b>Maximum Severity Rating</b></td>
|
||||
<td><b>Vulnerability Impact</b></td>
|
||||
<td><b>Affected Software</b></td>
|
||||
|
|
@ -257,6 +258,7 @@ damages so the foregoing limitation may not apply.</p>
|
|||
<td>{3}</td>
|
||||
<td>{4}</td>
|
||||
<td>{5}</td>
|
||||
<td>{6}</td>
|
||||
</tr>
|
||||
'@
|
||||
$cveSummaryTableHtml = ''
|
||||
|
|
@ -318,6 +320,7 @@ Process {
|
|||
"$($_.CVE)<br><a href=`"https://cve.mitre.org/cgi-bin/cvename.cgi?name=$($_.CVE)`">MITRE</a><br><a href=`"https://web.nvd.nist.gov/view/vuln/detail?vulnId=$($_.CVE)`">NVD</a>"
|
||||
$_.Description
|
||||
if ($_.Weakness) { $_.Weakness } else { 'N/A'}
|
||||
$_.'Customer Action Required'
|
||||
$_.'Maximum Severity Rating'
|
||||
$_.'Vulnerability Impact' -join ',<br>'
|
||||
$_.'Affected Software' -join ',<br>'
|
||||
|
|
|
|||
|
|
@ -236,6 +236,8 @@ Process {
|
|||
<br>
|
||||
<b>Weakness:</b> {7}
|
||||
<br>
|
||||
<b>Customer Action Required:</b> {8}
|
||||
<br>
|
||||
<b>CVSS:</b> <br>{1}
|
||||
<br>
|
||||
<b>Executive Summary:</b> <br>{6}
|
||||
|
|
@ -395,6 +397,14 @@ Process {
|
|||
'N/A' -join '<br>'
|
||||
}
|
||||
)
|
||||
# Customer Action Required
|
||||
$(
|
||||
if ($cveCustomerActionRequired = $v.Notes | Where-Object { $_.Title -eq "Customer Action Required" }) {
|
||||
$cveCustomerActionRequired -join '<br>'
|
||||
} else {
|
||||
'Yes' -join '<br>'
|
||||
}
|
||||
)
|
||||
|
||||
)
|
||||
|
||||
|
|
|
|||
Загрузка…
Ссылка в новой задаче