publicdata/nist-gov
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions
nist-gov/nvd.nist.gov/developers/data-sources
Scott Williams 4063bef310 Initital commit.
2025-03-05 18:59:57 +00:00

1009 lines
No EOL
38 KiB
Text
Raw Blame History

<!DOCTYPE html>
<html lang="en">
<head>
<title>Source API</title>
<meta http-equiv="content-type" content="text/html; charset=UTF-8" />
<meta http-equiv="content-style-type" content="text/css" />
<meta http-equiv="content-script-type" content="text/javascript" />
<meta name="viewport" content="width=device-width, initial-scale=1.0" />
<link href="/site-scripts/font-awesome/css/font-awesome.min.css"
type="text/css" rel="stylesheet" />
<link href="/site-media/bootstrap/css/bootstrap.min.css"
type="text/css" rel="stylesheet" />
<link href="/site-media/bootstrap/css/bootstrap-theme.min.css"
type="text/css" rel="stylesheet" />
<link
href="/site-scripts/eonasdan-bootstrap-datetimepicker/build/css/bootstrap-datetimepicker.min.css"
type="text/css" rel="stylesheet" />
<link href="/site-media/css/nist-fonts.css" type="text/css"
rel="stylesheet" />
<link href="/site-media/css/base-style.css" type="text/css"
rel="stylesheet" />
<link href="/site-media/css/media-resize.css" type="text/css"
rel="stylesheet" />
<meta name="theme-color" content="#000000">
<script src="/site-scripts/jquery/dist/jquery.min.js"
type="text/javascript"></script>
<script src="/site-scripts/jquery-visible/jquery.visible.min.js"
type="text/javascript"></script>
<script src="/site-scripts/underscore/underscore-min.js"
type="text/javascript"></script>
<script src="/site-media/bootstrap/js/bootstrap.js"
type="text/javascript"></script>
<script src="/site-scripts/moment/min/moment.min.js"
type="text/javascript"></script>
<script
src="/site-scripts/eonasdan-bootstrap-datetimepicker/build/js/bootstrap-datetimepicker.min.js"
type="text/javascript"></script>
<script src="/site-media/js/megamenu.js" type="text/javascript"></script>
<script src="/site-media/js/nist-exit-script.js"
type="text/javascript"></script>
<script src="/site-media/js/forms.js" type="text/javascript"></script>
<script
src="/site-media/js/federated-analytics.all.min.js?agency=NIST&amp;subagency=nvd&amp;pua=UA-37115410-41&amp;yt=true"
type="text/javascript" id="_fed_an_js_tag"></script>
<!-- Google tag (gtag.js) -->
<script async src="https://www.googletagmanager.com/gtag/js?id=G-4KKFZP12LQ"></script>
<script> window.dataLayer = window.dataLayer || []; function gtag(){dataLayer.push(arguments);} gtag('js', new Date()); gtag('config', 'G-4KKFZP12LQ'); </script>
<style id="antiClickjack">
body>* {
display: none !important;
}
#antiClickjack {
display: block !important;
}
</style>
<noscript>
<style id="antiClickjackNoScript">
body>* {
display: block !important;
}
#antiClickjack {
display: none !important;
}
</style>
</noscript>
<script type="text/javascript" id="antiClickjackScript">
if (self === top) {
// no clickjacking
var antiClickjack = document.getElementById("antiClickjack");
antiClickjack.parentNode.removeChild(antiClickjack);
} else {
setTimeout(tryForward(), 5000);
}
function tryForward() {
top.location = self.location;
}
</script>
<meta charset="UTF-8">
<link href="/site-media/css/nvd-style.css" type="text/css"
rel="stylesheet" />
<link href="/site-media/images/favicons/apple-touch-icon.png"
rel="apple-touch-icon" type="image/png" sizes="180x180" />
<link href="/site-media/images/favicons/favicon-32x32.png"
rel="icon" type="image/png" sizes="32x32" />
<link href="/site-media/images/favicons/favicon-16x16.png"
rel="icon" type="image/png" sizes="16x16" />
<link href="/site-media/images/favicons/manifest.json"
rel="manifest" />
<link href="/site-media/images/favicons/safari-pinned-tab.svg"
rel="mask-icon" color="#000000" />
<link href="/site-media/images/favicons/favicon.ico"
rel="shortcut icon" />
<meta name="msapplication-config" content="/site-media/images/favicons/browserconfig.xml" />
<link href="/site-media/images/favicons/favicon.ico"
rel="shortcut icon" type="image/x-icon" />
<link href="/site-media/images/favicons/favicon.ico" rel="icon"
type="image/x-icon" />
<meta charset="UTF-8">
<link href="/site-media/css/apiKey/api-styles.css" type="text/css" rel="stylesheet"/>
<meta name="viewport1" content="width=device-width, initial-scale=1">
<script>
$(document).ready(
function() {
// get hash/anchor_id from url
var hash = window.location.hash;
// if hash exists, expand the section and scroll to hash
if(hash.startsWith("#source-")) {
toggleMoreCode('divSourceApiParameters', 'iconSourceApi');
$('html, body').animate({
scrollTop: $(hash).offset().top
}, 1000);
}
});
function toggleMoreCode(elementId, iconId) {
var x = document.getElementById(elementId);
if (x.style.display === "none") {
x.style.display = "block";
} else {
x.style.display = "none";
}
if(typeof iconId !== 'undefined') {
var y = document.getElementById(iconId);
if (x.style.display === "block") {
y.classList.add("fa-minus");
y.classList.remove("fa-plus");
} else {
y.classList.add("fa-plus");
y.classList.remove("fa-minus");
}
}
}
</script>
<style>
</style>
<meta name="viewport1" content="width=device-width, initial-scale=1">
</head>
<body>
<header role="banner" title="Site Banner">
<div id="antiClickjack" style="display: none">
<h1>You are viewing this page in an unauthorized frame window.</h1>
<p>
This is a potential security issue, you are being redirected to
<a href="https://nvd.nist.gov">https://nvd.nist.gov</a>
</p>
</div>
<div>
<section class="usa-banner" aria-label="Official government website">
<div class="usa-accordion container">
<header class="usa-banner__header">
<noscript>
<p style="font-size: 0.85rem; font-weight: bold;">You have JavaScript disabled. This site requires JavaScript to be enabled for complete site functionality.</p>
</noscript>
<img class="usa-banner__header-flag"
src="/site-media/images/usbanner/us_flag_small.png" alt="U.S. flag">
&nbsp;
<span class="usa-banner__header-text">An official website of the United States government</span>
<button id="gov-banner-button" class="usa-accordion__button usa-banner__button" data-toggle="collapse" data-target="#gov-banner" aria-expanded="false" aria-controls="gov-banner">
<span class="usa-banner__button-text">Here's how you know</span>
</button>
</header>
<div class="usa-banner__content usa-accordion__content collapse" role="tabpanel" id="gov-banner" aria-expanded="true">
<div class="row">
<div class="col-md-5 col-sm-12">
<div class="row">
<div class="col-sm-2 col-xs-3">
<img class="usa-banner__icon usa-media-block__img"
src="/site-media/images/usbanner/icon-dot-gov.svg" alt="Dot gov">
</div>
<div class="col-sm-10 col-xs-9">
<p>
<strong>Official websites use .gov</strong>
<br>
A <strong>.gov</strong> website belongs to an official government organization in the United States.
</p>
</div>
</div>
</div>
<div class="col-md-5 col-sm-12">
<div class="row">
<div class="col-sm-2 col-xs-3">
<img class="usa-banner__icon usa-media-block__img"
src="/site-media/images/usbanner/icon-https.svg" alt="Https">
</div>
<div class="col-sm-10 col-xs-9">
<p>
<strong>Secure .gov websites use HTTPS</strong>
<br>
A <strong>lock</strong> (<img class="usa-banner__lock"
src="/site-media/images/usbanner/lock.svg" alt="Dot gov">) or <strong>https://</strong> means you've safely connected to the .gov website. Share sensitive information only on official, secure websites.
</p>
</div>
</div>
</div>
</div>
</div>
</div>
</section>
</div>
<div>
<div>
<nav id="navbar" class="navbar">
<div id="nist-menu-container" class="container">
<div class="row">
<!-- Brand -->
<div class="col-xs-6 col-md-4 navbar-header"
style="height:104px">
<a class="navbar-brand"
href="https://www.nist.gov"
target="_blank" rel="noopener noreferrer"
id="navbar-brand-image"
style="padding-top: 36px">
<img alt="National Institute of Standards and Technology"
src="/site-media/images/nist/nist-logo.svg"
width="110" height="30">
</a>
</div>
<div class="col-xs-6 col-md-8 navbar-nist-logo">
<span id="nvd-menu-button" class="pull-right" style="margin-top: 26px"> <a href="#">
<span class="fa fa-bars"></span> <span id="nvd-menu-full-text"><span
class="hidden-xxs">NVD </span>MENU</span>
</a>
</span>
</div>
</div>
</div>
<div class="main-menu-row container">
<!-- Collect the nav links, forms, and other content for toggling -->
<div id="main-menu-drop" class="col-lg-12" style="display: none;">
<ul>
<li><a href="/general"> General <span
class="expander fa fa-plus" id="nvd-header-menu-general"
data-expander-name="general" data-expanded="false"> <span
class="element-invisible">Expand or Collapse</span>
</span>
</a>
<div style="display: none;" class="sub-menu"
data-expander-trigger="general">
<div class="row">
<div class="col-lg-4">
<p>
<a href="/general/nvd-dashboard">NVD Dashboard</a>
</p>
<p>
<a href="https://www.nist.gov/itl/nvd">News and Status Updates</a>
</p>
</div>
<div class="col-lg-4">
<p>
<a href="/general/faq">FAQ</a>
</p>
</div>
<div class="col-lg-4">
<p>
<a href="/general/visualizations">Visualizations</a>
</p>
<p>
<a href="/general/legal-disclaimer">Legal Disclaimer</a>
</p>
</div>
</div>
</div></li>
<li><a href="/vuln"> Vulnerabilities <span
class="expander fa fa-plus"
id="nvd-header-menu-vulnerabilities"
data-expander-name="vulnerabilities" data-expanded="false">
<span class="element-invisible">Expand or Collapse</span>
</span>
</a>
<div style="display: none;" class="sub-menu"
data-expander-trigger="vulnerabilities">
<div class="row">
<div class="col-lg-4">
<p>
<a href="/vuln/search">Search &amp; Statistics</a>
</p>
<p>
<a href="/vuln/categories">Weakness Types</a>
</p>
</div>
<div class="col-lg-4">
<p>
<a href="/vuln/data-feeds">Legacy Data Feeds</a>
</p>
<p>
<a href="/vuln/vendor-comments">Vendor Comments</a>
</p>
</div>
<div class="col-lg-4">
<p>
<a href="/vuln/cvmap">CVMAP</a>
</p>
</div>
</div>
</div></li>
<li><a href="/vuln-metrics/cvss#"> Vulnerability Metrics <span
class="expander fa fa-plus" id="nvd-header-menu-metrics"
data-expander-name="metrics" data-expanded="false"> <span
class="element-invisible">Expand or Collapse</span>
</span>
</a>
<div style="display: none;" class="sub-menu"
data-expander-trigger="metrics">
<div class="row">
<div class="col-lg-4">
<p>
<a href="/vuln-metrics/cvss/v4-calculator">CVSS v4.0
Calculators</a>
</p>
</div>
<div class="col-lg-4">
<p>
<a href="/vuln-metrics/cvss/v3-calculator">CVSS v3.x
Calculators</a>
</p>
</div>
<div class="col-lg-4">
<p>
<a href="/vuln-metrics/cvss/v2-calculator">CVSS v2.0
Calculator</a>
</p>
</div>
</div>
</div></li>
<li><a href="/products"> Products <span
class="expander fa fa-plus" id="nvd-header-menu-products"
data-expander-name="products" data-expanded="false"> <span
class="element-invisible">Expand or Collapse</span>
</span>
</a>
<div style="display: none;" class="sub-menu"
data-expander-trigger="products">
<div class="row">
<div class="col-lg-4">
<p>
<a href="/products/cpe">CPE Dictionary</a>
</p>
<p>
<a href="/products/cpe/search">CPE Search</a>
</p>
</div>
<div class="col-lg-4">
<p>
<a href="/products/cpe/statistics">CPE Statistics</a>
</p>
<p>
<a href="/products/swid">SWID</a>
</p>
</div>
<div class="col-lg-4"></div>
</div>
</div></li>
<li>
<a href="/developers">Developers<span
class="expander fa fa-plus" id="nvd-header-menu-developers"
data-expander-name="developers" data-expanded="false"> <span
class="element-invisible">Expand or Collapse</span>
</span>
</a>
<div style="display: none;" class="sub-menu"
data-expander-trigger="developers">
<div class="row">
<div class="col-lg-4">
<p>
<a href="/developers/start-here">Start Here</a>
</p>
<p>
<a href="/developers/request-an-api-key">Request an API Key</a>
</p>
</div>
<div class="col-lg-4">
<p>
<a href="/developers/vulnerabilities">Vulnerabilities</a>
</p>
<p>
<a href="/developers/products">Products</a>
</p>
</div>
<div class="col-lg-4">
<p>
<a href="/developers/data-sources">Data Sources</a>
</p>
<p>
<a href="/developers/terms-of-use">Terms of Use</a>
</p>
</div>
</div>
</div>
</li>
<li><a href="/contact"> Contact NVD </a></li>
<li><a href="/other"> Other Sites <span
class="expander fa fa-plus" id="nvd-header-menu-othersites"
data-expander-name="otherSites" data-expanded="false"> <span
class="element-invisible">Expand or Collapse</span>
</span>
</a>
<div style="display: none;" class="sub-menu"
data-expander-trigger="otherSites">
<div class="row">
<div class="col-lg-4">
<p>
<a href="https://ncp.nist.gov">Checklist (NCP) Repository</a>
</p>
<p>
<a href="https://ncp.nist.gov/cce">Configurations (CCE)</a>
</p>
<p>
<a href="https://csrc.nist.gov/Projects/risk-management/sp800-53-controls/release-search">800-53 Controls</a>
</p>
</div>
<div class="col-lg-4">
<p>
<a
href="https://csrc.nist.gov/projects/scap-validation-program">SCAP
Validated Tools</a>
</p>
<p>
<a
href="https://csrc.nist.gov/projects/security-content-automation-protocol">SCAP</a>
</p>
</div>
<div class="col-lg-4">
<p>
<a
href="https://csrc.nist.gov/projects/united-states-government-configuration-baseline">USGCB</a>
</p>
</div>
</div>
</div></li>
<li><a href="/search"> Search <span
class="expander fa fa-plus" id="nvd-header-menu-search"
data-expander-name="search" data-expanded="false"> <span
class="element-invisible">Expand or Collapse</span>
</span>
</a>
<div style="display: none;" class="sub-menu"
data-expander-trigger="search">
<div class="row">
<div class="col-lg-4">
<p>
<a href="/vuln/search">Vulnerability Search</a>
</p>
</div>
<div class="col-lg-4">
<p>
<a href="/products/cpe/search">CPE Search</a>
</p>
</div>
</div>
</div></li>
</ul>
</div>
<!-- /#mobile-nav-container -->
</div>
</nav>
<section id="itl-header" class="has-menu">
<div class="container">
<div class="row">
<div class="col-sm-12 col-md-8">
<h2 class="hidden-xs hidden-sm">
<a href="https://www.nist.gov/itl" target="_blank" rel="noopener noreferrer">Information Technology Laboratory</a>
</h2>
<h1 class="hidden-xs hidden-sm">
<a id="nvd-header-link"
href="/">National Vulnerability Database</a>
</h1>
<h1 class="hidden-xs text-center hidden-md hidden-lg"
>National Vulnerability Database</h1>
<h1 class="hidden-sm hidden-md hidden-lg text-center"
>NVD</h1>
</div>
<div class="col-sm-12 col-md-4">
<a style="width: 100%; text-align: center; display: block;padding-top: 14px">
<img id="img-logo-nvd-lg"
alt="National Vulnerability Database"
src="/site-media/images/F_NIST-Logo-NVD-white.svg"
width="500" height="100">
</a>
</div>
</div>
</div>
</section>
</div>
</div>
</header>
<main>
<div>
<div id="body-section" class="container">
<div class="row">
<ol class="breadcrumb">
<li><a href="/developers" class="CMSBreadCrumbsLink">Developers</a></li>
</ol>
</div>
<div>
<div id="divSourceApi" class="row">
<h2>Data Sources</h2>
<p>
This documentation assumes that you already understand at least one common programming
language and are generally familiar with JSON RESTful services. JSON specifies the
format of the data returned by the REST service. REST refers to a style of services
that allow computers to communicate via HTTP over the Internet.
Click here for a list of
<a href="/developers/start-here">best practices and additional information</a>
on where to start. The NVD is also documenting
<a href="/developers/api-workflows">popular workflows</a> to assist developers
working with the APIs.
</p>
</div>
<div id="divGetSource" class="row">
<h3>Source API</h3>
<p>
The Source API is used to easily retrieve detailed information on the organizations
that provide the data contained in the NVD dataset.
</p>
<p>
The API is updated whenever a new source is added, or an existing source is
modified. Data sources change so infrequently that users interested in this information
may choose to limit their requests to once per day.
</p>
</div>
<div id= sourceBase class="example-request">
<div class="example-request-topbar">
<div class="example-request-title">Base URL</div>
</div>
<pre class="contentSection-pre"><code>https://services.nvd.nist.gov/rest/json/source/2.0</code></pre>
</div>
<h4 title="Click to expand or collapse">
<a id="toggleSourceApiParameters"
onclick="toggleMoreCode('divSourceApiParameters', 'iconSourceApi')">
<span class="fa fa-plus" id="iconSourceApi"></span>
Parameters
</a>
</h4>
<div id="divSourceApiParameters" class="row" style="display: none">
<table class="table">
<tr>
<td>
<a id="source-lastModDates"><span class="paramName">lastModStartDate & lastModEndDate <span class="paramOptional">optional</span></span></a>
<ul>
<li><code>{start date}</code></li>
<li><code>{end date}</code></li>
</ul>
<p>
These parameters return only the source records that were last
modified during the specified period. If a source record has been modified
more recently than the specified period, it will not be included
in the response. If filtering by the last modified date, both
<code>lastModStartDate</code> and <code>lastModEndDate</code> are
<span class="paramRequired">required</span>.
The maximum allowable range when using any
date range parameters is 120 consecutive days.
</p>
<p>
A source record is considered "modified"
when any of the follow actions occur:
</p>
<ol>
<li>A new source record is created</li> <!-- Sources are infrequently modified -->
<li>An existing source record is modified</li>
<li>An existing source changes acceptance level in CVMAP</li>
</ol>
<p>
Values must be entered in the extended ISO-8601 date/time format:
</p>
<code>[YYYY][“-”][MM][“-”][DD][“T”][HH][“:”][MM][“:”][SS][Z]</code>
<p>
The "T" is a literal to separate the date from the time. The Z indicates
an optional offset-from-UTC. Please note, if a positive Z value is used
(such as +01:00 for Central European Time) then the "+" should be encoded
in the request as "%2B". The user agent may handle this automatically.
</p>
<div id= source-lastModDates-request class="example-request">
<div class="example-request-topbar">
<div class="example-request-title">Request all source records modified between the start and end datetimes</div>
</div>
<pre class="contentSection-pre"><code>https://services.nvd.nist.gov/rest/json/source/2.0/?lastModStartDate=2021-08-04T13:00:00.000%2B01:00&lastModEndDate=2021-10-22T13:36:00.000%2B01:00</code></pre>
</div>
</td>
</tr>
<tr>
<td>
<a id="source-resultsPerPage"><span class="paramName">resultsPerPage <span class="paramOptional">optional</span></span></a>
<ul>
<li><code>{page limit}</code></li>
</ul>
<p>
This parameter specifies the maximum number of source records to be returned
in a single API response. For network considerations, the default value and
maximum allowable limit is <span id="apiResultsPerPageSource">1,000</span>.
</p>
</td>
</tr>
<tr>
<td>
<a id="source-sourceIdentifier"><span class="paramName">sourceIdentifier <span class="paramOptional">optional</span></span></a>
<ul>
<li><code>{sourceIdentifier}</code></li>
</ul>
<p>
This parameter returns all source records where the exact value of <span class="json-obj">sourceIdentifiers</span>
matches the <code>{sourceIdentifier}</code>.
</p>
<p>
A request made to the Source API without any additional parameters will return detailed information on
all organizations that provide the data contained in the NVD dataset, including every valid
<code>{sourceIdentifier}</code> value. The <a href="/developers/vulnerabilities">CVE API</a> also
returns valid <code>{sourceIdentifier}</code> values within the <span class="json-obj">descriptions</span> object.
</p>
<div id= source-sourceIdentifier-request class="example-request">
<div class="example-request-topbar">
<div class="example-request-title">Request all source records associated with the data source "cve@mitre.org"</div>
</div>
<pre class="contentSection-pre"><code>https://services.nvd.nist.gov/rest/json/source/2.0?sourceIdentifier=cve@mitre.org</code></pre>
</div>
</td>
</tr>
<tr>
<td>
<a id="source-startIndex"><span class="paramName">startIndex <span class="paramOptional">optional</span></span></a>
<ul>
<li><code>{offset}</code></li>
</ul>
<p>
This parameter specifies the index of the first source record to be returned in
the response data. The index is zero-based, meaning the first source record
is at index zero.
</p>
<p>
The Source API returns four primary objects in the response body that are
used for pagination:
<span class="json-obj">resultsPerPage</span>, <span class="json-obj">startIndex</span>, <span class="json-obj">totalResults</span>,
and <span class="json-obj">sources</span>. <span class="json-obj">totalResults</span> indicates the
total number of source records that match the request parameters.
If the value of <span class="json-obj">totalResults</span> is greater than the value of <span class="json-obj">resultsPerPage</span>,
there are more records than could be returned by a single API
response and additional requests must update the <code>startIndex</code>
to get the remaining records.
</p>
<p>
The best, most efficient, practice for keeping up to date with
the NVD is to use the date range parameters to request
only the source records that have been modified since your last request.
</p>
<div id="source-startIndex-request-1" class="example-request">
<div class="example-request-topbar">
<div class="example-request-title">Request 20 source records, beginning at index 0 and ending at index 19</div>
</div>
<pre class="contentSection-pre"><code>https://services.nvd.nist.gov/rest/json/source/2.0/?resultsPerPage=20&startIndex=0</code></pre>
</div>
<br>
<div id="source-startIndex-request-2" class="example-request">
<div class="example-request-topbar">
<div class="example-request-title">Request the source records, beginning at index 20 and ending at index 39</div>
</div>
<pre class="contentSection-pre"><code>https://services.nvd.nist.gov/rest/json/source/2.0/?resultsPerPage=20&startIndex=20</code></pre>
</div>
</td>
</tr>
</table>
</div>
<h4 title="Click to expand or collapse">
<a id="toggleGetSourceResponse"
onclick="toggleMoreCode('divSourceResponseBody', 'iconSourceResponse')">
<span class="fa fa-plus" id="iconSourceResponse"></span>
Response
</a>
</h4>
<div id="divSourceResponseBody" class="row" style="display: none">
<h5>Data Sources API JSON Schema</h5>
<p>
This API response includes only one JSON schema for defining the structure of the response data.
The following document includes information
on data types, regex patterns, maximum character length, and similar information that can support
developers and database administrators looking to create their own local repository.
</p>
<ul style="list-style: none">
<li><a href="https://csrc.nist.gov/schema/nvd/api/2.0/source_api_json_2.0.schema" class=schema-link>Source Schema</a></li>
</ul>
<h5>Response Details</h5>
<p>
The Source API returns seven primary objects in the body of the response:
<span class="json-obj">resultsPerPage</span>, <span class="json-obj">startIndex</span>,
<span class="json-obj">totalResults</span>, <span class="json-obj">format</span>,
<span class="json-obj">version</span>, <span class="json-obj">timestamp</span>,
and <span class="json-obj">sources</span>.
</p>
<p>
The <span class="json-obj">totalResults</span> object indicates the number of source records
that match the request criteria, including all parameters. If the value of
<span class="json-obj">totalResults</span> is greater than the value of
<span class="json-obj">resultsPerPage</span>, then additional requests are necessary to
return the remaining records. The parameter <span class="json-obj">startIndex</span> may be
used in subsequent requests to identify the starting point for the next request. More
information and the best practices for using <span class="json-obj">resultsPerPage</span>
and <span class="json-obj">startIndex</span> are described above.
</p>
<p>
The <span class="json-obj">format</span> and <span class="json-obj">version</span> objects
identify the format and version of the API response. <span class="json-obj">timestamp</span>
identifies when the response was generated.
</p>
<p>
The <span class="json-obj">sources</span> object contains an array of objects equal
to the number of records returned in the response and is sorted in ascending order
by the <span class="json-obj">created</span> property.
The <span class="json-obj">sources</span> object is explained in more detail below.
</p>
<p>
JSON response objects are either optional or required. Required response objects are always returned
by the API and may contain fields without data. Optional response objects are only returned when
they contain data. For example, the <span class="json-obj">v3AcceptanceLevel</span> object is optional
so it will only appear when a data source is a participant in the
<a href="/vuln/cvmap">Collaborative Vulnerability Metadata Acceptance Process</a> (CVMAP) <strong>and</strong>
it has an CVSSv3 acceptance level.
</p>
<h5 style="font-family:'Roboto Mono Web','Bitstream Vera Sans Mono','Consolas','Courier','monospace'" id="source-response-sources">sources <span class="paramRequired"> required</span> </h5>
<p>
This object contains the following required data: source name,
the email address used by the CVE Program to identify the source,
an object containing all email addresses linked to the source,
the date and time that the source first appeared in the NVD, and
the date and time that the record was last modified.
</p>
<p>
If the source participates in CVMAP the following optional objects may be returned:
<span class="json-obj">v2AcceptanceLevel</span>,
<span class="json-obj">v3AcceptanceLevel</span>, and
<span class="json-obj">cweAcceptanceLevel</span>.
Each object contains the source's current level in the process and the date
that the level last changed. Complete audit histories are available on the
<a href="/vuln/cvmap/search">CVMAP webpage</a>.
</p>
<button onclick="toggleMoreCode('jsonWindowSourceResponse')">Toggle JSON</button>
<div id="jsonWindowSourceResponse" class="example-response" style="display: none;">
<pre class="contentSection-pre"><code>
{
"resultsPerPage": 2,
"startIndex": 0,
"totalResults": 215,
"format": "NVD_SOURCE",
"version": "2.0",
"timestamp": "2022-08-25T17:48:15.150",
"sources": [
{
"name": "MITRE",
"contactEmail": "cve@mitre.org",
"sourceIdentifiers": [
"cve@mitre.org",
"security-info@sgi.com",
"security@netgear.com"
],
"lastModified": "2019-09-09T16:18:45.930",
"created": "2019-09-09T16:18:45.930",
"v3AcceptanceLevel": {
"description": "Contributor",
"lastModified": "2022-08-18T00:00:05.690"
},
"cweAcceptanceLevel": {
"description": "Reference",
"lastModified": "2022-08-19T00:00:00.060"
}
},
{
"name": "DWF",
"contactEmail": "cve-assign@distributedweaknessfiling.org",
"sourceIdentifiers": [
"cve-assign@distributedweaknessfiling.org",
"josh@bress.net"
],
"lastModified": "2019-09-09T16:18:45.930",
"created": "2019-09-09T16:18:45.930",
"cweAcceptanceLevel": {
"description": "Reference",
"lastModified": "2020-10-01T00:00:00.070"
}
}
]
}
</code></pre>
</div>
</div>
<div id="divContact" class="row">
<br>
<p>
Questions, comments, or concerns may be shared with the NVD by emailing <a href="mailto:nvd@nist.gov">nvd@nist.gov</a>
</p>
</div>
<div class="col-md-12 historical-data-area" id="historical-data-area">
<span>
Created
<span id="page-created-date">
<span>September 20, 2022</span>
</span>,
</span>
Updated
<span id="page-updated-date">
<span>August 3, 2023</span>
</span>
</div>
</div>
</div>
</div>
</main>
<footer id="footer" role="contentinfo">
<div class="container">
<div class="row">
<div class="col-sm-12">
<ul class="social-list pull-right">
<li class="field-item service-twitter list-horiz"><a
href="https://twitter.com/NISTCyber" target="_blank" rel="noopener noreferrer"
class="social-btn social-btn--large extlink ext"> <i
class="fa fa-twitter fa-fw"><span class="element-invisible">twitter</span></i><span
class="ext"><span class="element-invisible"> (link
is external)</span></span>
</a></li>
<li class="field-item service-facebook list-horiz"><a
href="https://www.facebook.com/NIST" target="_blank" rel="noopener noreferrer"
class="social-btn social-btn--large extlink ext"> <i
class="fa fa-facebook fa-fw"><span class="element-invisible">facebook</span></i><span
class="ext"><span class="element-invisible"> (link
is external)</span></span></a></li>
<li class="field-item service-linkedin list-horiz"><a
href="https://www.linkedin.com/company/nist" target="_blank" rel="noopener noreferrer"
class="social-btn social-btn--large extlink ext"> <i
class="fa fa-linkedin fa-fw"><span class="element-invisible">linkedin</span></i><span
class="ext"><span class="element-invisible"> (link
is external)</span></span></a></li>
<li class="field-item service-youtube list-horiz"><a
href="https://www.youtube.com/user/USNISTGOV" target="_blank" rel="noopener noreferrer"
class="social-btn social-btn--large extlink ext"> <i
class="fa fa-youtube fa-fw"><span class="element-invisible">youtube</span></i><span
class="ext"><span class="element-invisible"> (link
is external)</span></span></a></li>
<li class="field-item service-rss list-horiz"><a
href="https://www.nist.gov/news-events/nist-rss-feeds"
target="_blank" rel="noopener noreferrer" class="social-btn social-btn--large extlink">
<i class="fa fa-rss fa-fw"><span class="element-invisible">rss</span></i>
</a></li>
<li class="field-item service-govdelivery list-horiz last"><a
href="https://public.govdelivery.com/accounts/USNIST/subscriber/new?qsp=USNIST_3"
target="_blank" rel="noopener noreferrer" class="social-btn social-btn--large extlink ext">
<i class="fa fa-envelope fa-fw"><span
class="element-invisible">govdelivery</span></i><span class="ext"><span
class="element-invisible"> (link is external)</span></span>
</a></li>
</ul>
<span class="hidden-xs"> <a
title="National Institute of Standards and Technology" rel="home"
class="footer-nist-logo"> <img
src="/site-media/images/nist/nist-logo.png"
alt="National Institute of Standards and Technology logo" />
</a>
</span>
</div>
</div>
<div class="row hidden-sm hidden-md hidden-lg">
<div class="col-sm-12">
<a href="https://www.nist.gov"
title="National Institute of Standards and Technology" rel="home"
target="_blank" rel="noopener noreferrer" class="footer-nist-logo"> <img
src="/site-media/images/nist/nist-logo.png"
alt="National Institute of Standards and Technology logo" />
</a>
</div>
</div>
<div class="row footer-contact-container">
<div class="col-sm-6">
<strong>HEADQUARTERS</strong>
<br>
100 Bureau Drive
<br>
Gaithersburg, MD 20899
<br>
<a href="tel:301-975-2000">(301) 975-2000</a>
<br>
<br>
<a href="mailto:nvd@nist.gov">Webmaster</a> | <a
href="https://www.nist.gov/about-nist/contact-us">Contact Us</a>
| <a href="https://www.nist.gov/about-nist/visit"
style="display: inline-block;">Our Other Offices</a>
</div>
<div class="col-sm-6">
<div class="pull-right"
style="text-align:right">
<strong>Incident Response Assistance and Non-NVD Related<br>Technical Cyber Security Questions:</strong>
<br>
US-CERT Security Operations Center
<br> Email: <a href="mailto:soc@us-cert.gov">soc@us-cert.gov</a>
<br> Phone: 1-888-282-0870
</div>
</div>
</div>
<div class="row">
<nav title="Footer Navigation" role="navigation"
class="row footer-bottom-links-container">
<!-- https://github.com/usnistgov/nist-header-footer/blob/nist-pages/boilerplate-footer.html -->
<p>
<a href="https://www.nist.gov/oism/site-privacy">Site Privacy</a>
|
<a href="https://www.nist.gov/oism/accessibility">Accessibility</a>
|
<a href="https://www.nist.gov/privacy">Privacy Program</a>
|
<a href="https://www.nist.gov/oism/copyrights">Copyrights</a>
|
<a href="https://www.commerce.gov/vulnerability-disclosure-policy">Vulnerability Disclosure</a>
|
<a href="https://www.nist.gov/no-fear-act-policy">No Fear Act Policy</a>
|
<a href="https://www.nist.gov/foia">FOIA</a>
|
<a href="https://www.nist.gov/environmental-policy-statement">Environmental Policy</a>
|
<a href="https://www.nist.gov/summary-report-scientific-integrity">Scientific Integrity</a>
|
<a href="https://www.nist.gov/nist-information-quality-standards">Information Quality Standards</a>
|
<a href="https://www.commerce.gov/">Commerce.gov</a>
|
<a href="https://www.science.gov/">Science.gov</a>
|
<a href="https://www.usa.gov/">USA.gov</a>
</p>
</nav>
</div>
</div>
</footer>
</body>
</html>
Reference in a new issue View git blame Copy permalink