You can find the set of applications affected by a particular vulnerability in Nexus IQ Server by using the Advanced Search feature (https://help.sonatype.com/iqserver/reporting/advanced-search).
Search for a vulnerability using the following term:
vulnerabilityId:<CVE>E.g.
vulnerabilityId:CVE-2020-28052And this will return all applications that are affected by it.
There is also an Advanced Search REST API available - see https://help.sonatype.com/iqserver/automating/rest-apis/advanced-search-rest-api---v2
0 Comments