Skip to main content

Cyware Threat Intelligence eXchange

NVD

Connector Category: API Feed Source

About Integration

The National Vulnerability Database (NVD) is the U.S. government repository of standards-based vulnerability management data represented using the security content automation protocol. CTIX integrates with NVD enables security analysts to automate vulnerability management. Analysts can determine the impact of potential threats and prioritize threats accordingly.

Use Cases

  • Fetch Common Vulnerabilities and Exposures (CVEs) and Known Exploited Vulnerabilities (KEVs) feeds in CTIX for analysts to analyze and track potential vulnerabilities.

  • Integrate with Vulnerability Response to map potential vulnerabilities with impacted assets based on the criticality score suggested by NVD.

Benefits

  • Prioritize critical vulnerabilities coming from various sources in the platform based on their score and allocate resources accordingly.

  • Effectively plan your patches for vulnerabilities and avoid unplanned downtime for your system.

Configure NVD as an API Feed Source

NVD acts as an API feed source for CTIX. Configure NVD to enable the security analysts to fetch CVE and KEV vulnerabilities.

Before you Start

You must have the View API Feed, View Feed Source, Create Feed Source, and Update Feed Source permissions.

Steps

  1. Sign in to the CTIX application.

  2. Navigate to Administration, open Integration Management, and select APIs under FEED SOURCES.

  3. Click Add API Source.

  4. Search for NVD and click on the app.

  5. Click Add Instance.

  6. Enter a unique name to identify the instance, such as Prod-NVD.

  7. Enter the base URL to directly connect to the application server, such as https://sitename.com/directoryname/.

  8. Select Verify SSL to verify and secure the connection between the CTIX and NVD servers.

    If you disable this option, CTIX may configure an instance for an expired SSL certificate. This may not establish the connection properly and CTIX will not be able to notify you in case of a broken or improper connection. It is recommended to select this option.

  9. Click Save.

You can configure multiple instances of this integration by clicking Manage and Add More.

To successfully configure the integration between CTIX and NVD, follow the steps mentioned in API Integrations.