The NSA and CISA (Cybersecurity & Infrastructure Security Agency) startet an awesome new project and publish known exploited vulnerabilities as a JSON list with plenty of valuable info to bring up your shields.
All the important links:
- Known exploited vulnerabilities catalog
- Email Updates regarding known exploited vulnerabilities
- Cybersecurity Incident & Vulnerability Response Playbooks (pdf)
Since the CISA is also providing a JSON itβs time for writing some one liners with jq:
# Download the JSON
curl https://www.cisa.gov/sites/default/files/feeds/known_exploited_vulnerabilities.json
# bring the original JSON into a better data representation
jq '.vulnerabilities[] | [{product: .product, vulName: .vulnerabilityName, shortDescription: .shortDescription, dateAdded: .dateAdded, requiredAction: .requiredAction}]' known_exploited_vulnerabilities.json