Introducing PSCVSS: A PowerShell & PowerShell Core Module to calculate a CVSS Score

joshswimlane · April 19, 2019, 4:44pm

Hello Everyone,

I wanted to share a new Windows PowerShell & PowerShell Core module I have released to the PowerShell Gallery called PSCVSS.

PSCVSS is a Script Module that can be used to calculate a CVSS (Common Vulnerability Scoring System) 3 Score by providing a VectorString. PSCVSS calculates a CVSS score all locally and does NOT communicate with any APIs. This module works on Windows PowerShell as well as PowerShell Core.

PSCVSS returns the Base, Temporal, Environmental and CVSS Score based on a provided Vector String.

If you’re not familiar, CVSS is a standard used by almost all Vulnerability Management and CVE repository to provide a repeatable way to determine the risk of a specific vulnerability. From my searching this capability was not previously available in a PowerShell Module, so I wrote it to take a Vulnerability/CVE Vector and calculate the overall score/risk of the provided string.

Example

You can retrieve a Vector string from the NVD (National Vulnerability Database). For example, this vulnerability was released on April 1st: https://nvd.nist.gov/vuln/detail/CVE-2017-16774

The Vector String for this vulnerability is provided: AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N

Using PSCVSS you can calculate the score locally without communicating with third-party APIs:

Installation

First you can download PSCVSS from the PowerShellGallery:

Install-Module -Name PSCVSS

Additionally, you can clone the repository:

git clone git@github.com:swimlane/PSCVSS.git

Importing

You first need to import the module into your current PowerShell session:

Import-Module -Name PSCVSS -Force

Using

Now that PSCVSS is installed on your machine, you can run the Get-CVSSScore Function. At this time, you can provide a VectorString that you have written yourself or retrieved from a third-party service:

Get-CVSSScore -VectorString 'CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N'

You can also pipe your VectorString to this function:

'CVSS:3.0/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N' | Get-CVSSScore

Current Support

Thanks for taking the time to look at PSCVSS. In the future I plan on expanding this functionality so that you can provide a set of key value pairs and in return it will give you different options based on opposite values.

You can find PSCVSS here:

GitHub: https://github.com/swimlane/PSCVSS
PowerShellGallery: https://www.powershellgallery.com/packages/PSCVSS/1.0.1.30

Topic		Replies	Views
Swimlane Powershell Scripting Knowledge base	4	1847	January 8, 2018
Swimlane Version Control Knowledge base	0	1501	December 30, 2017
What do you use powershell for? Threat hunting powershell	6	1676	December 15, 2017
Installing CRITS (Collaborative Research Into Threats) on Ubuntu 16.04 LTS x64 Part#1 Knowledge base usecase , playbook	6	4182	June 24, 2019
SSL- self-signed certs aren't working in the cluster SecOps	3	788	December 18, 2017