CVE Context on Censys Search
Manage vulnerabilities and monitor your threat landscape with searchable CVEs in your host dataset using Censys Search. Censys CVE data enriches host data with known CVE information for operating systems, software, and hardware.
CVE fields include:
- CVE ID
- Whether a CVE is present in CISA's Known Exploited Vulnerability (KEV) catalog and when it was added to the KEV catalog
- CVE CVSS score
- CVE Attack Complexity rating
A complete list of CVE fields available for host records can be seen on the hosts data definitions page.
CVE data in Censys Search is available as an add-on to Search Pro and above customers. To learn more about this feature, please contact your Censys team representative.
Using and viewing host CVE data in the Censys Search UI
CVE data for hosts is available in the web interface can be viewed and used in a several different ways.
- Filters in search results: Filter by CVE ID, CVSS Scores, and CISA’s KEV catalog in the left navigation panel.
- CVE count in host record preview: See the total number of CVEs for a host at a glance in the host record preview in search results.
- CVEs tab and page on host records: View the total number of CVEs associated with a host record on the CVEs tab. Click this tab to see detailed information about all CVEs detected on a host, sorted by CVSS score and KEV catalog status.
- Complete readout of CVE fields: On the right side of the host's summary page, click Raw Data > Table and scroll down to the CVE section.
Using and viewing CVE data via API
You can retrieve CVE data via the API using the fields provided on the host data definitions page.
CVE search examples
Use the following queries to search CVE data:
Critical CVEs that are KEVs | cves.cvss.score: [9 to *] and cves.kev: * |
KEVs from a specific year | cves.kev: * and cves.year: 2024 |
Easily exploitable CVEs | cves.cvss.components.attack_complexity="LOW" |
CVE identifiers | cves.id: CVE-2006-20001 cves.id=”CVE-2019-14540” |
Critical CVEs that an unauthenticated attacker can easily exploit | cves.cvss.score: [9 TO 10] and |
Comments
0 comments
Please sign in to leave a comment.