The National Vulnerability Database (NVD) CVE action submits a ThreatQ data collection, consisting of CVEs and Vulnerabilities, to NVD for enrichment. NVD returns detailed information that is then ingested back into ThreatQ.

The integration provides the following action:

• NVD CVE - submits CVEs and Vulnerabilities to be enriched.

The action is compatible with the following system objects:

• CVEs (indicators)
• Vulnerabilities 

The action returns the following enriched system objects:

• Indicators
  • Indicator attributes
• Vulnerabilities
  • Vulnerability Attributes 

This action is intended for use with ThreatQ TDR Orchestrator (TQO). An active TQO license is required for this feature.