KnowledgeBase QVS Download in JSON Format

For API version information, refer to the API Version History section.

V2.0|V3.0

V2.0

GET POST/api/2.0/fo/knowledge_base/qvs/?action=list

Download Qualys Vulnerability Score (QVS) information from the Vulnerability KnowledgeBase for one or more CVE IDs based on certain criteria. The API output is in JSON format.

The Qualys Vulnerability Score (QVS) is a Qualys-assigned score to a vulnerability based on multiple factors associated with the CVE, such as CVSS, EPSS and external threat indicators like active exploitation, exploit code maturity and much more. 

Input ParametersInput Parameters

Parameter

Required/Optional

Data Type

Description

action=list

Required

String 

You must specify the list action.

details={Basic|All}

Required

Boolean 

Specify details=Basic to show the base QVS in the output. Specify details=All to show the base QVS and contributing factors in the output.

cve={value}

Required

Integer 

Filter the JSON output to only show vulnerabilities associated with the CVE IDs that you specify. The associated vulnerabilities are shown only when the requested CVE is published.

qvs_last_modified _before={date}

Optional

Integer  

Show only CVE IDs with a QVS score that was last modified before a certain date and time. Valid date format is: YYYY-MM-DD[THH:MM:SSZ] format (UTC/GMT), like “2021-12-01” or “2021-1201T23:12:00Z”.

qvs_last_modified _after={date}

Optional

Integer  

Show only CVE IDs with a QVS score that was last modified after a certain date and time. Valid date format is: YYYY-MM-DD[THH:MM:SSZ] format (UTC/GMT), like “2021-12-01” or “2021-12-01T23:12:00Z”.

qvs_min={value}

Optional

Integer  

Show only CVEs with a QVS value greater than or equal to the QVS min value specified. (QVS Prime will not be considered.) When qvs_min and qvs_max are specified in the same request, the qvs_min value must be less than the qvs_max value.

qvs_max={value}

Optional

Integer  

Show only CVEs with a QVS value less than or equal to the QVS max value specified. (QVS Prime will not be considered.) When qvs_min and qvs_max are specified in the same request, the qvs_min value must be less than the qvs_max value.

nvd_published_be fore={date}

Optional

Integer  

Show only CVE IDs with a QVS score that was published before a certain date and time. Valid date format is: YYYY-MM-DD[THH:MM:SSZ] format (UTC/GMT), like “2021-12-01” or “2021-12-01T23:12:00Z”.

nvd_published_aft er={date}

Optional

Integer  

Show only CVE IDs with a QVS score that was published after a certain date and time. Valid date format is: YYYY-MM-DD[THH:MM:SSZ] format (UTC/GMT), like “2021-12-01” or “2021-12-01T23:12:00Z”.

Sample KnowledgeBase QVS DownloadSample KnowledgeBase QVS Download

API Request

curl --location 
'<qualys_base_url>/api/2.0/fo/knowledge_base/qvs/?action=list&cve=CVE-2021-36764%2CCVE-2021-36765%2CCVE-2021-36798&details=All'\
--header 'X-Requested-With: curl demo 2' \
--header 'Authorization: encoded username:password string'

Output

{
    "CVE-2021-36764": {
        "base": {
            "id": "CVE-2021-36764",
            "idType": "CVE",
            "qvs": "35",
            "qvsLastChangedDate": 1664755200,
            "nvdPublishedDate": 1628086500
        },
        "contributingFactors": {
            "cvss": "7.5",
            "cvssVersion": "v3.x",
            "cvssString": "AV:N\/AC:L\/PR:N\/UI:N\/S:U\/C:N\/I:N\/A:H",
            "epss": [
                "0.00089"
            ]
        }
    },
    "CVE-2021-36765": {
        "base": {
            "id": "CVE-2021-36765",
            "idType": "CVE",
            "qvs": "35",
            "qvsLastChangedDate": 1664755200,
            "nvdPublishedDate": 1628086500
        },
        "contributingFactors": {
            "cvss": "7.5",
            "cvssVersion": "v3.x",
            "cvssString": "AV:N\/AC:L\/PR:N\/UI:N\/S:U\/C:H\/I:N\/A:N",
            "epss": [
                "0.00152"
            ]
        }
    },
    "CVE-2021-36798": {
        "base": {
            "id": "CVE-2021-36798",
            "idType": "CVE",
            "qvs": "41",
            "qvsLastChangedDate": 1704844800,
            "nvdPublishedDate": 1628514900
        },
        "contributingFactors": {
            "cvss": "7.5",
            "cvssVersion": "v3.x",
            "cvssString": "AV:N\/AC:L\/PR:N\/UI:N\/S:U\/C:N\/I:N\/A:H",
            "exploitMaturity": [
                "poc"
            ],
            "epss": [
                "0.00246"
            ]
        }
    }
}

V3.0

GET POST/api/3.0/fo/knowledge_base/qvs/?action=list

Download Qualys Vulnerability Score (QVS) information from the Vulnerability KnowledgeBase for one or more CVE IDs based on certain criteria. The API output is in JSON format.

The Qualys Vulnerability Score (QVS) is a Qualys-assigned score to a vulnerability based on multiple factors associated with the CVE, such as CVSS, EPSS and external threat indicators like active exploitation, exploit code maturity and much more. 

Input ParametersInput Parameters

Parameter

Required/Optional

Data Type

Description

action=list

Required

String 

You must specify the list action.

details={Basic|All}

Required

Boolean 

Specify details=Basic, to show the base QVS in the output. Specify details=All, to show the base QVS and contributing factors in the output.

cve={value}

Optional

Integer  Filter the JSON output to only show only the CVEs for which the QVS is recently updated. The associated vulnerabilities are shown only when the requested CVE is published.

qvs_last_modified _before={date}

Optional

Integer   Show only CVE IDs with a QVS score that was modified for the last 15 days before a specific date and time. Valid date format is: YYYY-MM-DD[THH:MM:SSZ] format (UTC/GMT), like “2021-12-01” or “2021- 
1201T23:12:00Z”.

qvs_last_modified _after={date}

Optional

Integer   Show only CVE IDs with a QVS score that was modified within the next 15 days after a specific date and time. Valid date format is: YYYY-MM-DD[THH:MM:SSZ] format (UTC/GMT), like “2021-12-01” or “2021-12-
01T23:12:00Z”.

qvs_min={value}

Optional

Integer  

Show only CVEs with a QVS value greater than or equal to the QVS min value specified. (QVS Prime will not be considered.) When qvs_min and qvs_max are specified in the same request, the qvs_min value must be less than the qvs_max value.

Note: This shows only the CVEs with a QVS score that was modified for the last 15 days.

qvs_max={value}

Optional

Integer  

Show only CVEs with a QVS value less than or equal to the QVS max value specified. (QVS Prime will not be considered.) When qvs_min and qvs_max are specified in the same request, the qvs_min value must be less than the qvs_max value.

Note: This shows only the CVEs with a QVS score that was modified for the last 15 days.

nvd_published_be fore={date}

Optional

Integer   Show only the CVE IDs with modified QVS scores from the past 15 days that were published before a specified date and time. Valid date format is: YYYY-MM-DD[
THH:MM:SSZ] format (UTC/GMT), like “2021-12-01” or “2021-12-
01T23:12:00Z”.

nvd_published_aft er={date}

Optional

Integer   Show only the CVE IDs where the QVS scores have been updated and published within the next 15 days, starting from a specified date and time. Valid date format is: YYYY-MM-DD[THH:MM:SSZ]
format (UTC/GMT), like “2021-12-01” or “2021-12-01T23:12:00Z”.

Sample - KnowledgeBase QVS DownloadSample - KnowledgeBase QVS Download

API Request

curl --location 
'<qualys_base_url>/api/3.0/fo/knowledge_base/qvs/?action=list&cve=CVE-2021-36764%2CCVE-2021-36765%2CCVE-2021-36798&details=All'\
--header 'X-Requested-With: curl demo 2' \
--header 'Authorization: encoded username:password string'

JSON Output

{
    "CVE-2021-36764": {
        "base": {
            "id": "CVE-2021-36764",
            "idType": "CVE",
            "qvs": "35",
            "qvsLastChangedDate": 1664755200,
            "nvdPublishedDate": 1628086500
        },
        "contributingFactors": {
            "cvss": "7.5",
            "cvssVersion": "v3.x",
            "cvssString": "AV:N\/AC:L\/PR:N\/UI:N\/S:U\/C:N\/I:N\/A:H",
            "epss": [
                "0.00089"
            ]
        }
    },
    "CVE-2021-36765": {
        "base": {
            "id": "CVE-2021-36765",
            "idType": "CVE",
            "qvs": "35",
            "qvsLastChangedDate": 1664755200,
            "nvdPublishedDate": 1628086500
        },
        "contributingFactors": {
            "cvss": "7.5",
            "cvssVersion": "v3.x",
            "cvssString": "AV:N\/AC:L\/PR:N\/UI:N\/S:U\/C:H\/I:N\/A:N",
            "epss": [
                "0.00152"
            ]
        }
    },
    "CVE-2021-36798": {
        "base": {
            "id": "CVE-2021-36798",
            "idType": "CVE",
            "qvs": "41",
            "qvsLastChangedDate": 1704844800,
            "nvdPublishedDate": 1628514900
        },
        "contributingFactors": {
            "cvss": "7.5",
            "cvssVersion": "v3.x",
            "cvssString": "AV:N\/AC:L\/PR:N\/UI:N\/S:U\/C:N\/I:N\/A:H",
            "exploitMaturity": [
                "poc"
            ],
            "epss": [
                "0.00246"
            ]
        }
    }
}

Sample - QVS last modified before a given dateSample - QVS last modified before a given date

API Request

curl --location 'https://<qualys_base_url>/api/3.0/fo/knowledge_base/qvs/?action=list&qvs_last_modified_before=2024-08-15' \
--header 'X-Requested-With: curl' \
--header 'Authorization: Basic username:password string'

JSON Output

{
"CVE-2017-16260": {
"base": {
"id": "CVE-2017-16260",
"idType": "CVE",
"qvs": "72",
"qvsLastChangedDate": 1722988800,
"nvdPublishedDate": 1673475300
}
},
"CVE-2017-16261": {
"base": {
"id": "CVE-2017-16261",
"idType": "CVE",
"qvs": "42",
"qvsLastChangedDate": 1722988800,
"nvdPublishedDate": 1673475300
}
},
"CVE-2017-16262": {
"base": {
"id": "CVE-2017-16262",
"idType": "CVE",
"qvs": "72",
"qvsLastChangedDate": 1722988800,
"nvdPublishedDate": 1673475300
}
},
"CVE-2023-23948": {
"base": {
"id": "CVE-2023-23948",
"idType": "CVE",
"qvs": "37",
"qvsLastChangedDate": 1722902400,
"nvdPublishedDate": 1676308500
}
},
"CVE-2017-16263": {
"base": {
"id": "CVE-2017-16263",
"idType": "CVE",
"qvs": "72",
"qvsLastChangedDate": 1722988800,
"nvdPublishedDate": 1673475300
}
}

Sample - QVS last modified after a given dateSample - QVS last modified after a given date

API Request

curl --location 'https://<qualys_base_url>/api/3.0/fo/knowledge_base/qvs/?action=list&qvs_last_modified_after=2024-09-05&details=All' \
--header 'X-Requested-With: curl' \
--header 'Authorization: Basic username:password string'

JSON Output

{
"CVE-2024-38858": {
"base": {
"id": "CVE-2024-38858",
"idType": "CVE",
"qvs": "30",
"qvsLastChangedDate": 1725494400,
"nvdPublishedDate": 1725279319
},
"contributingFactors": {
"cvss": "6.1",
"cvssVersion": "v3.x",
"cvssString": "CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:R\/S:C\/C:L\/I:L\/A:N",
"trending": [
"09032024,09042024,08272024,08282024"
],
"epss": [
"0.00043"
]
}
},
"CVE-2018-19183": {
"base": {
"id": "CVE-2018-19183",
"idType": "CVE",
"qvs": "41",
"qvsLastChangedDate": 1725494400,
"nvdPublishedDate": 1541989740
},
"contributingFactors": {
"cvss": "7.5",
"cvssVersion": "v3.x",
"cvssString": "CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:N\/S:U\/C:N\/I:N\/A:H",
"exploitMaturity": [
"poc"
],
"epss": [
"0.00416"
]
}
}

Sample - Display CVEs for QVS minimumSample - Display CVEs for QVS minimum

API Request

curl --location 'https://<qualys_base_url>/api/3.0/fo/knowledge_base/qvs/?action=list&details=All&qvs_min=95' \
--header 'X-Requested-With: curl' \
--header 'Authorization: Basic username:password string' 

JSON Output

 {
"CVE-2024-38856": {
"base": {
"id": "CVE-2024-38856",
"idType": "CVE",
"qvs": "95",
"qvsLastChangedDate": 1725956542967,
"nvdPublishedDate": 1722849356
},
"contributingFactors": {
"cvss": "9.8",
"cvssVersion": "v3.x",
"cvssString": "CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:N\/S:U\/C:H\/I:H\/A:H",
"threatActors": [
"Unattributed"
],
"exploitMaturity": [
"weaponized,poc"
],
"trending": [
"08182024,08232024,08092024,08062024,08072024,08262024,08132024,08292024,08302024,08152024,08212024,08112024,08202024,08282024,08252024,08242024,08162024,08042024,08122024"
],
"epss": [
"0.93274"
]
}
},
"CVE-2019-18988": {
"base": {
"id": "CVE-2019-18988",
"idType": "CVE",
"qvs": "95",
"qvsLastChangedDate": 1725956542967,
"nvdPublishedDate": 1581092100
},
"contributingFactors": {
"cvss": "7.0",
"cvssVersion": "v3.x",
"cvssString": "AV:L\/AC:H\/PR:L\/UI:N\/S:U\/C:H\/I:H\/A:H",
"exploitMaturity": [
"poc,weaponized"
],
"trending": [
"07052024"
],
"epss": [
"0.00358"
]
}
}

Sample - Display CVEs for QVS maximumSample - Display CVEs for QVS maximum

API Request

 curl --location 'https://<qualys_base_url>/api/3.0/fo/knowledge_base/qvs/?action=list&details=All&qvs_max=95' \
--header 'X-Requested-With: curl' \
--header 'Authorization: Basic username:password string'

JSON Output

 {
    "CVE-2017-16260": {
        "base": {
            "id": "CVE-2017-16260",
            "idType": "CVE",
            "qvs": "71",
            "qvsLastChangedDate": 1725580800,
            "nvdPublishedDate": 1673475300
        },
        "contributingFactors": {
            "cvss": "9.9",
            "cvssVersion": "v3.x",
            "cvssString": "AV:N\/AC:L\/PR:L\/UI:N\/S:C\/C:H\/I:H\/A:H",
            "exploitMaturity": [
                "poc"
            ],
            "epss": [
                "0.00091"
            ]
        }
    },
    "CVE-2017-16261": {
        "base": {
            "id": "CVE-2017-16261",
            "idType": "CVE",
            "qvs": "41",
            "qvsLastChangedDate": 1725580800,
            "nvdPublishedDate": 1673475300
        },
        "contributingFactors": {
            "cvss": "8.8",
            "cvssVersion": "v3.x",
            "cvssString": "AV:N\/AC:L\/PR:L\/UI:N\/S:U\/C:H\/I:H\/A:H",
            "exploitMaturity": [
                "poc"
            ],
            "epss": [
                "0.00091"
            ]
        }
    }

Sample - Display CVEs with QVS min and QVS maxSample - Display CVEs with QVS min and QVS max

API Request

 curl --location 'https://<qualys_base_url>/api/3.0/fo/knowledge_base/qvs/?action=list&details=All&qvs_min=95&qvs_max=96' \
--header 'X-Requested-With: curl' \
--header 'Authorization: Basic username:password string'

JSON Output

 {
"CVE-2024-38856": {
"base": {
"id": "CVE-2024-38856",
"idType": "CVE",
"qvs": "95",
"qvsLastChangedDate": 1725958333539,
"nvdPublishedDate": 1722849356
},
"contributingFactors": {
"cvss": "9.8",
"cvssVersion": "v3.x",
"cvssString": "CVSS:3.1\/AV:N\/AC:L\/PR:N\/UI:N\/S:U\/C:H\/I:H\/A:H",
"threatActors": [
"Unattributed"
],
"exploitMaturity": [
"weaponized,poc"
],
"trending": [
"08182024,08232024,08092024,08062024,08072024,08262024,08132024,08292024,08302024,08152024,08212024,08112024,08202024,08282024,08252024,08242024,08162024,08042024,08122024"
],
"epss": [
"0.93274"
]
}
},
"CVE-2019-18988": {
"base": {
"id": "CVE-2019-18988",
"idType": "CVE",
"qvs": "95",
"qvsLastChangedDate": 1725958333539,
"nvdPublishedDate": 1581092100
},
"contributingFactors": {
"cvss": "7.0",
"cvssVersion": "v3.x",
"cvssString": "AV:L\/AC:H\/PR:L\/UI:N\/S:U\/C:H\/I:H\/A:H",
"exploitMaturity": [
"poc,weaponized"
],
"trending": [
"07052024"
],
"epss": [
"0.00358"
]
}

API Version History

The following table depicts the information about the different versions of this API along with the status:

API Version API Status Release Date
/api/2.0/fo/knowledge_base/qvs/?action=list To be deprecated September 2024
/api/3.0/fo/knowledge_base/qvs/?action=list Active March 2025

 

 


 

 

Was this topic helpful?

success Thank you! We're glad to hear that this topic was useful.
success We appreciate your feedback. We'll work to make this topic better for you in the future.