KnowledgeBase QVS Download in JSON Format
Click to view navigation pane

KnowledgeBase QVS Download in JSON Format

GET POST/api/2.0/fo/knowledge_base/qvs/?action=list

Download Qualys Vulnerability Score (QVS) information from the Vulnerability KnowledgeBase for one or more CVE IDs based on certain criteria. The API output is in JSON format.

Input ParametersInput Parameters

Parameter

Required/Optional

Data Type

Description

action=list

Required

 String 

You must specify the list action.

details={Basic|All}

Required

 Boolean 

Specify details=Basic to show the base QVS in the output. Specify details=All to show the base QVS and contributing factors in the output.

cve={value}

Required

 Integer 

Filter the JSON output to only show vulnerabilities associated with the CVE IDs that you specify. The associated vulnerabilities are shown only when the requested CVE is published.

qvs_last_modified _before={date}

Optional

 Integer  

Show only CVE IDs with a QVS score that was last modified before a certain date and time. Valid date format is: YYYY-MMDD[THH:MM:SSZ] format (UTC/GMT), like “2021-12-01” or “2021-1201T23:12:00Z”.

qvs_last_modified _after={date}

Optional

 Integer  

Show only CVE IDs with a QVS score that was last modified after a certain date and time. Valid date format is: YYYY-MM-DD[THH:MM:SSZ] format (UTC/GMT), like “2021-12-01” or “2021-12-01T23:12:00Z”.

qvs_min={value}

Optional

 Integer  

Show only CVEs with a QVS value greater than or equal to the QVS min value specified. (QVS Prime will not be considered.) When qvs_min and qvs_max are specified in the same request, the qvs_min value must be less than the qvs_max value.

qvs_max={value}

Optional

 Integer  

Show only CVEs with a QVS value less than or equal to the QVS max value specified. (QVS Prime will not be considered.) When qvs_min and qvs_max are specified in the same request, the qvs_min value must be less than the qvs_max value.

nvd_published_be fore={date}

Optional

 Integer  

Show only CVE IDs with a QVS score that was published before a certain date and time. Valid date format is: YYYY-MM-DD[THH:MM:SSZ] format (UTC/GMT), like “2021-12-01” or “2021-12-01T23:12:00Z”.

nvd_published_aft er={date}

Optional

 Integer  

Show only CVE IDs with a QVS score that was published after a certain date and time. Valid date format is: YYYY-MM-DD[THH:MM:SSZ] format (UTC/GMT), like “2021-12-01” or “2021-12-01T23:12:00Z”.

Sample KnowledgeBase QVS DownloadSample KnowledgeBase QVS Download

API Request

curl -u "USERNAME:PASSWORD" -H "X-Requested-With:curl""https://<qualys_base_url>/api/2.0/fo/knowledge_base/qvs/?action=list&cve=CVE-2021-36765,CVE-2021-36798&qvs_min=1&qvs_max=100&qvs_last_modified_after=2016-12-16T05:00:17Z&qvs_last_modified_before=2022-01-20T05:00:17Z&nvd_published_after=2016-12-16T05:00:17Z&nvd_published_before=2022-12-16T05:00:17Z&details=All"

Output

{
    "CVE-2021-36765": {
    "base": {
    "id": "CVE-2021-36765",
    "idType": "CVE",
    "qvs": "28",
    "qvsLastChangedDate": 1642032000,
    "nvdPublishedDate": 1628086500
    },
    "contributingFactors": {
    "cvss": "5",
    "cvssVersion": "v2"
    }
    },
    "CVE-2021-36798": {
    "base": {
    "id": "CVE-2021-36798",
    "idType": "CVE",
    "qvs": "78",
    "qvsLastChangedDate": 1642550400,
    "nvdPublishedDate": 1628514900
    },
    "contributingFactors": {
    "cvss": "5",
    "cvssVersion": "v2",
    "exploitMaturity": [
    "poc"
    ]
    }
    }
    }