Skip to content

Commit 976e89f

Browse files
ncrocferncrocfer
committed
feat: add kev and epss documentation
Signed-off-by: Nicolas Crocfer <[email protected]>
1 parent 6cbc7fe commit 976e89f

File tree

1 file changed

+8
-6
lines changed

1 file changed

+8
-6
lines changed

docs/guides/advanced_search.md

Lines changed: 8 additions & 6 deletions
Original file line numberDiff line numberDiff line change
@@ -53,15 +53,17 @@ The currently supported fields are:
5353
- **product** - Search by product name (e.g., `android`).
5454
- **userTag** - Search by user tag associated with the CVE.
5555
- **project** – Search using the vendors and products subscribed in a project.
56+
- **kev** – Search based on the KEV catalog. Accepts `true` or `false`.
57+
- **epss** – Search based on EPSS score. Accepts a percentage (e.g., `epss:80`) or a decimal between 0 and 1 (e.g., `epss:'0.8'`).
5658

5759
!!! important
5860
Each field supports specific operators to refine your queries effectively:
5961

6062
- **description**, **title**, and **cve** fields support the operators `:` and `=`:
6163
- `:` performs a partial (LIKE) search.
6264
- `=` performs an exact match search.
63-
- CVSS fields (**cvss20**, **cvss30**, **cvss31**, **cvss40**) support the following comparison operators: `>`, `>=`, `<`, `<=`, `=`.
64-
- **vendor**, **product**, and **userTag** fields only support the `:` operator.
65+
- Metrics fields (**cvss20**, **cvss30**, **cvss31**, **cvss40**, **epss**) support the following comparison operators: `>`, `>=`, `<`, `<=`, `=`.
66+
- **vendor**, **product**, **userTag** and **kev** fields only support the `:` operator.
6567

6668
By using fields and operators, you can fine-tune your searches to quickly find relevant CVEs based on your needs.
6769

@@ -101,10 +103,10 @@ To search for CVEs with a high score in either CVSS 3.1 or CVSS 4.0:
101103
cvss31>=9 OR cvss40>=9
102104
```
103105

104-
To search for CVEs within a product:
106+
To search for CVEs within a product and in the KEV catalog:
105107

106108
```
107-
vendor:linux AND product:linux_kernel
109+
vendor:linux AND product:linux_kernel AND kev:true
108110
```
109111

110112
To search all CVE in 1999's:
@@ -113,10 +115,10 @@ To search all CVE in 1999's:
113115
cve:CVE-1999
114116
```
115117

116-
To search all CVEs related to the vendors and products subscribed to in a project:
118+
To search all CVEs related to the vendors and products subscribed to in a project with a high EPSS score:
117119

118120
```
119-
project:my-project
121+
project:my-project AND epss>=80
120122
```
121123

122124
!!! tip

0 commit comments

Comments
 (0)