Has anyone found a good or more automated way to query for CVE’s with OS Query?
10/16/2019, 3:12 PM
I don't know if there is one. osquery is for introspecting the system / device it's installed on. So you could gather details on the operating system version, patches installed, installed programs. Then you can use some utility to find CVEs for those components and versions.
10/16/2019, 3:23 PM
absolutely - i was wondering if we could start stemming into pulling this information as there is an announcement automatically look for X but alot of CVEs require us to look for different components on the OS