NIST has elected to end its support of the XML Vulnerability data feed as of October 8, 2019. To account for this, RSA Archer has released an updated data feed that utilizes the NIST JSON Vulnerability data feed, which was released August 8, 2019. To ensure you are staying up to date with the latest NVD CVE information as it is released, your RSA Archer administrator will need to replace the XML-based data feed with the new JSON-enabled data feed. The following link will take you to the updated data feed: https://community.rsa.com/docs/DOC-96550.
In converting our CVE data feed to NVD’s JSON data feed, we were able to add several additional fields to help in understanding the importance of the vulnerability. The following fields have been added to the RSA Archer NVD data feed:
- CVSS V3 Base Score
- CVSS V3 Attack Vector
- CVSS V3 Attack Complexity
- CVSS V3 Privileges Required
- CVSS V3 User Interaction
- CVSS V3 Scope
- CVSS V3 Confidentiality Impact
- CVSS V3 Integrity Impact NVD CVSS V3 Availability Impact
- CVSS V3 Base Severity
- CVSS V3 Exploitability Score
- CVSS V3 Impact Score
- CVSS V2 Severity
- CVSS V2 Impact Score
- CVSS V2 Exploitability Score
Please note that while today you must manually add the above fields, they will be included in the RSA Archer IT & Security Vulnerabilities Program use case out of the box with the release of RSA Archer 6.7.
Also, with the release of the updated data feed, we were not able to include the CPE information as previously configured in the XML data feed. NVD has changed the format in which they provide the CPE information, which is not currently supported within the RSA Archer Platform. We are working on a temporary solution to allow you to continue to use the CPE data until we can address this within the RSA Archer Platform and will keep you posted on an interim solution as we progress. If you have any additional questions, please contact me or your RSA account representative.
