There are several ways to use content, text files or strings, containing CVE IDs such as CVE-2015-0001, to generate a useful CSV file with a summary and CVSS score for the listed vulnerabilities.

cd path/to/cve-tools

# From a file.
bin/create-cve-csv -f path/to/file > cves.csv

# From a file via pipe.
cat path/to/file | bin/create-cve-csv > cves.csv

# Directly.
bin/create-cve-csv "CVE-2015-0001 blah blah CVE-2015-0002, etc." > cves.csv

# Directly via pipe.
echo "CVE-2015-0001 blah blah CVE-2015-0002, etc." \
  | bin/create-cve-csv > cves.csv

The output has the following format:

CVE ID	CSVV	URL	Summary
CVE-2015-0001	7.5	https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0001	A helpful summary.
CVE-2015-0002	5.0	https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2015-0002	A helpful summary.
etc...

Downloading and Parsing XML is Slow!

Expect this to take a few moments to chew through the necessary data, especially if having to check CVEs from multiple different years.

FAQs

What is cve-tools?

Is cve-tools popular?

Is cve-tools well maintained?

Package last updated on 30 Nov 2015

Did you know?

Socket for GitHub automatically highlights issues in each pull request and monitors the health of all your open source dependencies. Discover the contents of your packages and block harmful activity before you install or update your dependencies.

Install

cve-tools

CVE Tools

Installation

Create CSV Files From Content Containing CVE IDs

Downloading and Parsing XML is Slow!

Related posts

Supply Chain Attack on Rspack npm Packages Injects Cryptojacking Malware

Skuld Infostealer Returns to npm with Fake Windows Utilities and Malicious Solara Development Packages