## Vulnerabilities
This documentation assumes that you already understand at least one common programming language and are generally familiar with JSON RESTful services. JSON specifies the format of the data returned by the REST service. REST refers to a style of services that allow computers to communicate via HTTP over the Internet. Click here for a list of best practices and additional information on where to start. The NVD is also documenting popular workflows to assist developers working with the APIs.

## CVE API
The CVE API is used to easily retrieve information on a single CVE or a collection of CVE from the NVD. The NVD contains 305,871 CVE records. Because of this, its APIs enforce offset-based pagination to answer requests for large collections. Through a series of smaller “chunked” responses controlled by an offset startIndex and a page limit resultsPerPage users may page through all the CVE in the NVD.

In [1]:
import requests
import json
import os
import pandas as pd
from datetime import datetime, timedelta

In [None]:
# os.chdir('./notebooks')
os.getcwd()

## CVSS Versión  4

In [13]:
# Parámetros 
url="https://services.nvd.nist.gov/rest/json/cves/2.0/"
# parameters = "cvssV4Severity=CRITICAL&lastModStartDate=2025-08-04T13:00:00.000%2B01:00&lastModEndDate=2025-10-22T13:36:00.000%2B01:00"
params_time = "pubStartDate=2025-07-01T00:00:00.000&pubEndDate=2025-08-01T00:00:00.000"
params_severity_high = "cvssV4Severity=HIGH" #|cvssV4Severity=CRITICAL"
params_severity_critical = "cvssV4Severity=CRITICAL" #|cvssV4Severity=CRITICAL"

# Realizar la petición
response_high = requests.get(f'{url}?{params_severity_high}')#{params_time}&
response_critical = requests.get(f'{url}?{params_severity_critical}')#{params_time}&

print(f'Respuesta del servidor: {response_high} {response_critical}')

# Json to list:
list_data = response_high.json()
cve = list_data['vulnerabilities']
      
list_data = response_critical.json()
cve_2 = list_data['vulnerabilities']

cve.extend(cve_2)

# Dataframe:
lista_cve = []

for i in cve:
    lista_cve.append(i["cve"])

data = pd.DataFrame(lista_cve)


# Castear las fechas:
data["published"] = pd.to_datetime(data["published"])
data["lastModified"] = pd.to_datetime(data["lastModified"])
# data.info()

Respuesta del servidor: <Response [200]> <Response [200]>


In [None]:
# últimos días
earliest_time = datetime.now() - timedelta(days=120)
data[data["published"] >= earliest_time]

## CVSS versión  3

In [15]:
# Parámetros 
url="https://services.nvd.nist.gov/rest/json/cves/2.0/"
# parameters = "cvssV4Severity=CRITICAL&lastModStartDate=2025-08-04T13:00:00.000%2B01:00&lastModEndDate=2025-10-22T13:36:00.000%2B01:00"
params_time = "pubStartDate=2025-07-01T00:00:00.000&pubEndDate=2025-08-01T00:00:00.000"
params_severity_high = "cvssV3Severity=HIGH" #|cvssV4Severity=CRITICAL"
params_severity_critical = "cvssV3Severity=CRITICAL" #|cvssV4Severity=CRITICAL"

# Realizar la petición
response_high = requests.get(f'{url}?{params_severity_high}')#{params_time}&
response_critical = requests.get(f'{url}?{params_severity_critical}')#{params_time}&

print(f'Respuesta del servidor: {response_high} {response_critical}')

# Json to list:
list_data = response_high.json()
cve = list_data['vulnerabilities']
      
list_data = response_critical.json()
cve_2 = list_data['vulnerabilities']

cve.extend(cve_2)

# Dataframe:
lista_cve = [ i["cve"] for i in cve ]



data = pd.DataFrame(lista_cve)


# Castear las fechas:
data["published"] = pd.to_datetime(data["published"])
data["lastModified"] = pd.to_datetime(data["lastModified"])
# data.info()

Respuesta del servidor: <Response [200]> <Response [200]>


In [None]:
# fecha limite
fecha_lim = datetime(2025,4,4)
data[data["published"] >= fecha_lim]

---
## Búsqueda por fecha

In [80]:
# Parámetros 
url="https://services.nvd.nist.gov/rest/json/cves/2.0/"
# parameters = "cvssV4Severity=CRITICAL&lastModStartDate=2025-08-04T13:00:00.000%2B01:00&lastModEndDate=2025-10-22T13:36:00.000%2B01:00"
params_time = "pubStartDate=2025-07-15T00:00:00.000&pubEndDate=2025-08-20T00:00:00.000"
params_index = "startIndex=2000"
params_result_per_page = "resultsPerPage=2000"


# Realizar la petición
response_fecha = requests.get(f'{url}?{params_result_per_page}&{params_index}&{params_time}')


print(f'Respuesta del servidor: {response_fecha}')

# Json to list:
list_data = response_fecha.json()
cve = list_data['vulnerabilities']

# Dataframe:
lista_cve = [ i["cve"] for i in cve ]


data = pd.DataFrame(lista_cve)


# Castear las fechas:
data["published"] = pd.to_datetime(data["published"])
data["lastModified"] = pd.to_datetime(data["lastModified"])
# data.info()

Respuesta del servidor: <Response [200]>


In [57]:
data.sort_values("published", ascending=False).head()

Unnamed: 0,id,sourceIdentifier,published,lastModified,vulnStatus,cveTags,descriptions,metrics,weaknesses,configurations,references,cisaExploitAdd,cisaActionDue,cisaRequiredAction,cisaVulnerabilityName
1999,CVE-2025-38552,416baaa9-dc9f-4396-8d5f-8c081fb06d67,2025-08-16 12:15:31.400,2025-08-18 20:16:28.750,Awaiting Analysis,[],"[{'lang': 'en', 'value': 'In the Linux kernel,...",{},,,[{'url': 'https://git.kernel.org/stable/c/659d...,,,,
1998,CVE-2025-38551,416baaa9-dc9f-4396-8d5f-8c081fb06d67,2025-08-16 12:15:31.267,2025-08-18 20:16:28.750,Awaiting Analysis,[],"[{'lang': 'en', 'value': 'In the Linux kernel,...",{},,,[{'url': 'https://git.kernel.org/stable/c/3859...,,,,
1997,CVE-2025-38550,416baaa9-dc9f-4396-8d5f-8c081fb06d67,2025-08-16 12:15:31.137,2025-08-18 20:16:28.750,Awaiting Analysis,[],"[{'lang': 'en', 'value': 'In the Linux kernel,...",{},,,[{'url': 'https://git.kernel.org/stable/c/5f18...,,,,
1996,CVE-2025-38549,416baaa9-dc9f-4396-8d5f-8c081fb06d67,2025-08-16 12:15:31.003,2025-08-18 20:16:28.750,Awaiting Analysis,[],"[{'lang': 'en', 'value': 'In the Linux kernel,...",{},,,[{'url': 'https://git.kernel.org/stable/c/64e1...,,,,
1995,CVE-2025-38548,416baaa9-dc9f-4396-8d5f-8c081fb06d67,2025-08-16 12:15:30.880,2025-08-18 20:16:28.750,Awaiting Analysis,[],"[{'lang': 'en', 'value': 'In the Linux kernel,...",{},,,[{'url': 'https://git.kernel.org/stable/c/0db7...,,,,


In [79]:
for i in cve:
    cve_id = i['cve']['id']
    try:
        cve_cpe = i["cve"]['configurations'][0]['nodes'][0]['cpeMatch'][0]['criteria']
    except Exception as e:
        cve_cpe = 'Nan'
    
    try:
        severidad =  i["cve"]['metrics']['cvssMetricV31'][0]['cvssData']['baseSeverity']
        if severidad in ['HIGH','CRITICAL']:
            print(f'{cve_id} con severidad en CVSS31 es: {severidad} con CPE: {cve_cpe}')
    except Exception as e:
        pass
    try:
        severidad =  i["cve"]['metrics']['cvssMetricV40'][0]['cvssData']['baseSeverity']
        if severidad in ['HIGH','CRITICAL']:
            print(f'{cve_id} con severidad en CVSS4 es: {severidad} con CPE: {cve_cpe}')
    except Exception as e:
        pass
    try:
        severidad =  i["cve"]['metrics']['cvssMetricV2'][0]['cvssData']['baseScore']
        if severidad > 7:
            print(f'{cve_id} con severidad en CVSS2 es: {severidad} con CPE: {cve_cpe}')
    except Exception as e:
        pass




CVE-2025-52203 con severidad en CVSS31 es: HIGH con CPE: cpe:2.3:a:devaslanphp:project_management:1.2.4:*:*:*:*:*:*:*
CVE-2025-8409 con severidad en CVSS31 es: HIGH con CPE: cpe:2.3:a:code-projects:vehicle_management:1.0:*:*:*:*:*:*:*
CVE-2025-8409 con severidad en CVSS2 es: 7.5 con CPE: cpe:2.3:a:code-projects:vehicle_management:1.0:*:*:*:*:*:*:*
CVE-2025-51503 con severidad en CVSS31 es: HIGH con CPE: cpe:2.3:a:microweber:microweber:2.0.0:*:*:*:*:*:*:*
CVE-2025-26062 con severidad en CVSS31 es: CRITICAL con CPE: Nan
CVE-2025-26063 con severidad en CVSS31 es: CRITICAL con CPE: cpe:2.3:o:intelbras:rx_1500_firmware:2.2.9:*:*:*:*:*:*:*
CVE-2025-26064 con severidad en CVSS31 es: HIGH con CPE: cpe:2.3:o:intelbras:rx_1500_firmware:2.2.9:*:*:*:*:*:*:*
CVE-2025-45769 con severidad en CVSS31 es: HIGH con CPE: cpe:2.3:a:google:firebase_php-jwt:*:*:*:*:*:*:*:*
CVE-2025-45770 con severidad en CVSS31 es: HIGH con CPE: cpe:2.3:a:jwt_project:jwt:*:*:*:*:*:*:*:*
CVE-2025-50572 con severidad en CVSS31

# CVSS versión 4 bis

In [77]:
for i in cve:
    cve_id = i['cve']['id']
    try:
        cve_cpe = i["cve"]['configurations'][0]['nodes'][0]['cpeMatch'][0]['criteria']
    except Exception as e:
        cve_cpe = 'Nan'
    try:
        severidad =  i["cve"]['metrics']['cvssMetricV40'][0]['cvssData']['baseSeverity']
        if severidad in ['HIGH','CRITICAL']:
            print(f'{cve_id} con severidad en CVSS4 es: {severidad} con CPE: {cve_cpe}')
    except Exception as e:
        pass
    



CVE-2025-8286 con severidad en CVSS4 es: CRITICAL con CPE: Nan
CVE-2025-48071 con severidad en CVSS4 es: HIGH con CPE: cpe:2.3:a:openexr:openexr:*:*:*:*:*:*:*:*
CVE-2025-41370 con severidad en CVSS4 es: CRITICAL con CPE: Nan
CVE-2025-41371 con severidad en CVSS4 es: CRITICAL con CPE: Nan
CVE-2025-41372 con severidad en CVSS4 es: HIGH con CPE: Nan
CVE-2025-41373 con severidad en CVSS4 es: HIGH con CPE: Nan
CVE-2025-41374 con severidad en CVSS4 es: HIGH con CPE: Nan
CVE-2025-41375 con severidad en CVSS4 es: HIGH con CPE: Nan
CVE-2025-41376 con severidad en CVSS4 es: HIGH con CPE: Nan
CVE-2012-10022 con severidad en CVSS4 es: HIGH con CPE: Nan
CVE-2013-10044 con severidad en CVSS4 es: HIGH con CPE: Nan
CVE-2013-10046 con severidad en CVSS4 es: HIGH con CPE: Nan
CVE-2013-10047 con severidad en CVSS4 es: CRITICAL con CPE: Nan
CVE-2013-10048 con severidad en CVSS4 es: CRITICAL con CPE: Nan
CVE-2013-10049 con severidad en CVSS4 es: CRITICAL con CPE: Nan
CVE-2013-10050 con severidad en CVSS4 e

In [71]:
cve[0]['cve']['configurations'][0]['nodes'][0]['cpeMatch'][0]['criteria']

'cpe:2.3:a:devaslanphp:project_management:1.2.4:*:*:*:*:*:*:*'

In [58]:

# Guardar los datos en un archivo JSON
with open('../data/list_data.json', 'w') as file:
    json.dump(list_data, file)

In [19]:
data.sort_values("published", ascending=False)

Unnamed: 0,id,sourceIdentifier,published,lastModified,vulnStatus,cveTags,descriptions,metrics,weaknesses,configurations,references,cisaExploitAdd,cisaActionDue,cisaRequiredAction,cisaVulnerabilityName
1999,CVE-2025-50065,secalert_us@oracle.com,2025-07-15 20:15:41.090,2025-08-04 21:17:29.563,Analyzed,[],"[{'lang': 'en', 'value': 'Vulnerability in the...",{'cvssMetricV31': [{'source': 'secalert_us@ora...,[{'source': '134c704f-9b21-4f2e-91b3-4a467353b...,"[{'nodes': [{'operator': 'OR', 'negate': False...",[{'url': 'https://www.oracle.com/security-aler...,,,,
1998,CVE-2025-50064,secalert_us@oracle.com,2025-07-15 20:15:40.970,2025-07-24 21:00:37.623,Analyzed,[],"[{'lang': 'en', 'value': 'Vulnerability in the...",{'cvssMetricV31': [{'source': 'secalert_us@ora...,[{'source': '134c704f-9b21-4f2e-91b3-4a467353b...,"[{'nodes': [{'operator': 'OR', 'negate': False...",[{'url': 'https://www.oracle.com/security-aler...,,,,
1997,CVE-2025-50063,secalert_us@oracle.com,2025-07-15 20:15:40.850,2025-08-04 21:17:23.417,Analyzed,[],"[{'lang': 'en', 'value': 'Vulnerability in Ora...",{'cvssMetricV31': [{'source': 'secalert_us@ora...,"[{'source': 'nvd@nist.gov', 'type': 'Primary',...","[{'nodes': [{'operator': 'OR', 'negate': False...",[{'url': 'https://www.oracle.com/security-aler...,,,,
1996,CVE-2025-50062,secalert_us@oracle.com,2025-07-15 20:15:40.730,2025-07-29 17:36:04.523,Analyzed,[],"[{'lang': 'en', 'value': 'Vulnerability in the...",{'cvssMetricV31': [{'source': 'secalert_us@ora...,[{'source': '134c704f-9b21-4f2e-91b3-4a467353b...,"[{'nodes': [{'operator': 'OR', 'negate': False...",[{'url': 'https://www.oracle.com/security-aler...,,,,
1995,CVE-2025-50061,secalert_us@oracle.com,2025-07-15 20:15:40.607,2025-07-24 20:57:41.220,Analyzed,[],"[{'lang': 'en', 'value': 'Vulnerability in the...",{'cvssMetricV31': [{'source': 'secalert_us@ora...,[{'source': '134c704f-9b21-4f2e-91b3-4a467353b...,"[{'nodes': [{'operator': 'OR', 'negate': False...",[{'url': 'https://www.oracle.com/security-aler...,,,,
...,...,...,...,...,...,...,...,...,...,...,...,...,...,...,...
4,CVE-2025-53005,security-advisories@github.com,2025-07-01 01:15:28.430,2025-07-16 14:43:07.000,Analyzed,[],"[{'lang': 'en', 'value': 'DataEase is an open ...",{'cvssMetricV40': [{'source': 'security-adviso...,"[{'source': 'security-advisories@github.com', ...","[{'nodes': [{'operator': 'OR', 'negate': False...",[{'url': 'https://github.com/dataease/dataease...,,,,
3,CVE-2025-36056,psirt@us.ibm.com,2025-07-01 01:15:28.113,2025-07-03 15:14:12.767,Undergoing Analysis,[],"[{'lang': 'en', 'value': 'IBM System Storage V...",{'cvssMetricV31': [{'source': 'psirt@us.ibm.co...,"[{'source': 'psirt@us.ibm.com', 'type': 'Prima...",,[{'url': 'https://www.ibm.com/support/pages/no...,,,,
2,CVE-2025-2141,psirt@us.ibm.com,2025-07-01 01:15:27.603,2025-07-03 15:14:12.767,Undergoing Analysis,[],"[{'lang': 'en', 'value': 'IBM System Storage V...",{'cvssMetricV31': [{'source': 'psirt@us.ibm.co...,"[{'source': 'psirt@us.ibm.com', 'type': 'Prima...",,[{'url': 'https://www.ibm.com/support/pages/no...,,,,
1,CVE-2025-6936,cna@vuldb.com,2025-07-01 00:15:26.740,2025-07-07 14:45:57.567,Analyzed,[],"[{'lang': 'en', 'value': 'A vulnerability was ...","{'cvssMetricV40': [{'source': 'cna@vuldb.com',...","[{'source': 'cna@vuldb.com', 'type': 'Secondar...","[{'nodes': [{'operator': 'OR', 'negate': False...","[{'url': 'https://code-projects.org/', 'source...",,,,
