forked from righel/ms-exchange-version-nse
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathupdate_main_exchange_versions_cves.py
87 lines (67 loc) · 2.29 KB
/
update_main_exchange_versions_cves.py
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
#!/usr/bin/env python3
import requests
import json
import time
import urllib3
import sys
import re
from distutils.version import LooseVersion
urllib3.disable_warnings()
if(len(sys.argv[1:]) < 2):
exit("versions dict/output file path missing")
versions_file = sys.argv[1]
cves_file = sys.argv[2]
# load versions dict
with open(versions_file, "r") as file:
main_versions = file.read()
versions_dict = json.loads(main_versions)
# load cves dict
with open(cves_file, "r") as file:
cves = file.read()
cves_dict = json.loads(cves)
def generate_ms_exchange_cpe(version):
y = re.search('(\d{4})', version["name"])
if y:
year = y.group(1)
else:
print("unknown exchange year: %s" % version["name"])
return None
# grab cumulative update
cu = re.search('CU(\d+)', version["name"])
if cu:
cumulative = "cumulative_update_%s" % cu.group(1)
else:
print("unknown exchange cumulative update: %s" % version["name"])
return None
return "cpe:/a:microsoft:exchange_server:%s:%s:*:*:*:*:*:*" % (year, cumulative)
for version in versions_dict:
if version not in cves_dict:
# new version, add it
cpe = generate_ms_exchange_cpe(versions_dict[version])
cves_dict[version] = {
"cpe": cpe,
"cves": []
}
cpe = cves_dict[version]["cpe"]
if cpe is not None:
if cpe:
cves_dict[version]["cves"] = []
# get cves
r = requests.get("https://cvepremium.circl.lu/api/cvefor/%s" % cpe)
if r.status_code == 200:
data = json.loads(r.text)
for cve in data:
print(version)
print(cve)
cves_dict[version]["cves"].append({
"cvss": cve.get("cvss", cve.get("cvss3")),
"cvss-time": cve.get("cvss-time"),
"cwe": cve["cwe"],
"id": cve["id"],
"last-modified": cve["last-modified"],
"summary": cve["summary"],
})
time.sleep(1)
cves_dict = {k: cves_dict[k] for k in sorted(cves_dict, key=LooseVersion)}
with open(cves_file, "w") as output:
json.dump(cves_dict, output, indent=4, sort_keys=True)