Details
-
Bug
-
Resolution: Fixed
-
High
-
5.4.6
-
1
-
Severity 1 - Critical
-
Description
Issue Summary
As described here: National Vulnerability Database - Timeline
The 1.0 APIs will be deprecated on September 2023. Customer concerns with regards to if NVD Integration for Assets already uses API 2.0 or if this is in the timeline.
If not it is advised to fast roll the adoption of the 2.0 API endpoints as described:
National Vulnerability Database - Datasources
This is reproducible on Data Center: (yes)
Steps to Reproduce
- Setup a sample Assets project on JSM instance (5.4.x)
- Install NVD Integration
- Do NVD import to get list of vulnerabilities of objects
Expected Results
Objects get created to list out current vulnerabilities
Actual Results
Currently working as expected, concern about future operation as 1.0 version of API is being deprecated.
Workaround
Currently there is no known workaround for this behavior. A workaround will be added here when available