Common Vulnerabilities and Exposures (CVE®)
收藏Databricks2024-05-09 收录
下载链接:
https://marketplace.databricks.com/details/c16b5e78-b4fe-4e89-9d86-5748a1a16bcf/Databricks_Common-Vulnerabilities-and-Exposures-(CVE®)
下载链接
链接失效反馈官方服务:
资源简介:
**Overview**
This dataset contains all publicly disclosed cybersecurity vulnerabilities identified by, or reported to, the MITRE CVE® Program. It is ingested from the [CVE GitHub repository](https://github.com/CVEProject/cvelistV5) and updated hourly to provide the latest information.
**Use cases**
- Enriches vulnerability scan reports with additional details (descriptions, references, impact ratings, etc.)
- Enables the monitoring and prioritization of newly reported vulnerabilites.
**Product details**
Table(s) included:
- cves_bronze
- cves_silver
The cves_silver table is a cleansed version of cves_bronze containing the most common and practical attributes.
Fields included:
- cveId: The CVE identifier that this record pertains to.
- datePublished: The date/time the CVE Record was first published in the CVE List.
- dateUpdated: The date/time the record was last updated.
- assignerOrgId: The UUID for the organization to which the CVE ID was originally assigned. This UUID can be used to lookup the organization record in the user registry service.
- assignerShortName: The short name for the organization to which the CVE ID was originally assigned.
- problemTypes: This is problem type information (e.g. CWE identifier).
- affected: List of affected products.
- descriptions: A list of multi-lingual descriptions of the vulnerability.
- references: This is reference data in the form of URLs or file objects.
These are the minimally required attributes available for each record in the dataset. Additional attributes and metadata may also be available.
For more details, refer to the embedded notebook.
**Additional Insights**
- [CVE Website](https://www.cve.org/)
- [CVE Schema](https://cveproject.github.io/cve-schema/schema/v5.0/docs/#oneOf_i0_containers_cna_references)
CVE® is a registered trademark of the MITRE Corporation.
### 数据集概览
本数据集涵盖所有由MITRE CVE®计划识别或上报的公开披露网络安全漏洞。数据源自[CVE GitHub仓库](https://github.com/CVEProject/cvelistV5),并每小时更新以提供最新信息。
### 应用场景
- 为漏洞扫描报告增补各类附加细节(包括漏洞描述、参考资料、影响评级等)
- 支持对新上报漏洞的监控与优先级排序工作
### 产品详情
本次数据集包含以下数据表:
- cves_bronze
- cves_silver
其中`cves_silver`表为`cves_bronze`的清洗后版本,收录了最常用且实用的属性字段。
#### 包含字段
- `cveId`:本记录对应的CVE标识符
- `datePublished`:CVE记录首次在CVE列表中发布的日期与时间
- `dateUpdated`:该记录最后一次更新的日期与时间
- `assignerOrgId`:原始分配该CVE ID的组织的UUID,可通过该UUID在用户注册服务中查询对应组织的详细信息
- `assignerShortName`:原始分配该CVE ID的组织的简称
- `problemTypes`:问题类型信息(例如通用弱点枚举(Common Weakness Enumeration,CWE)标识符)
- `affected`:受影响产品列表
- `descriptions`:该漏洞的多语言描述列表
- `references`:以URL或文件对象形式存在的参考数据
以上为数据集中每条记录的最小必填属性,数据集同时可能包含额外属性与元数据。如需获取更多详情,请参阅内嵌的Jupyter笔记本。
### 额外参考信息
- [CVE官方网站](https://www.cve.org/)
- [CVE模式规范](https://cveproject.github.io/cve-schema/schema/v5.0/docs/#oneOf_i0_containers_cna_references)
CVE®是MITRE公司的注册商标。
提供机构:
Databricks搜集汇总
数据集介绍

背景与挑战
背景概述
该数据集收录了MITRE CVE®项目公开披露的网络安全漏洞信息,每小时更新一次,包含原始和清洗后的两个数据表(cves_bronze和cves_silver),主要字段涵盖漏洞ID、发布时间、受影响产品等核心属性,可用于漏洞扫描增强和风险监控。
以上内容由遇见数据集搜集并总结生成



