SK
12/21/2021, 2:15 PMLucas Rodriguez
12/21/2021, 2:16 PMI was wondering is there a way at this moment to search based on CVE?Do you mean to filter the vulnerable detected software by some CVE entered by the user?
Noah Talerman
12/21/2021, 3:59 PMSK
12/21/2021, 4:10 PMNoah Talerman
12/21/2021, 4:18 PMwas not clear for me what the timeframe would beAh. This improvement will likely be added in early to late Feb 2022 (~1.5-2 months)
Lucas Rodriguez
12/21/2021, 4:27 PMfleetctl get hosts
and some script to process the JSON (or YAML) data.fleetctl get hosts $my_test_hostname > test.txt
# In test.txt I found the following (the test host has a sqlite version that has a CVE):
- generated_cpe: cpe:2.3:a:sqlite:sqlite:3.36.0:*:*:*:*:*:*:*
id: 398
name: sqlite
source: homebrew_packages
version: 3.36.0
vulnerabilities:
- cve: CVE-2021-36690
details_link: <https://nvd.nist.gov/vuln/detail/CVE-2021-36690>
SK
12/21/2021, 4:33 PM