All scripts
isp
Advanced
4–9 min

T-ISP-039 · OS Version & CVE Exposure Reporter

Map fleet OS versions against a vendor PSIRT/CVE feed to report exposed devices, severity-ranked advisories, fixed-release recommendations, and end-of-support flags.

Cisco IOS-XR
Cisco IOS/XE
Juniper Junos
Nokia SR OS
Open in GeneratorOpen in Platform
You're viewing a preview

The full script, parameters, and execution console are available with a free account.

Already have access? Sign in →

Capabilities

  • Version → CVE mapping
  • CVSS severity ranking
  • Fixed-release suggestion
  • EoS / EoL flags
  • Per-advisory device list
  • CSV + JSON output

Required inputs

Parameters the script accepts. Defaults shown; some are vendor- or context-gated.

ParameterTypeDefaultNotes
Minimum CVSS to report
min_cvss
string7.0
Flag end-of-support
include_eos
booltrue

Hint 1Name your vendors and OS versions

Mention the exact platforms you run (Cisco IOS-XR, Cisco IOS/XE, Juniper Junos, …) so the generated isp & peering logic uses the right CLI/NETCONF syntax.

Hint 2State your real thresholds

Provide concrete values for Minimum CVSS to report, Flag end-of-support instead of the defaults — they shape what counts as a fault.

Hint 3Prioritize the checks you need

This tool can version → CVE mapping and cVSS severity ranking. Ask for the subset relevant to your incident to keep output focused.

Hint 4Describe your inventory format

Tell the assistant whether your device list is CSV, YAML, or JSON and which columns it has, so parsing matches your data.

Sample inventory schema

Authoritative shape of the device/policy data this script consumes.

No bundled inventory sample. The script accepts standard device lists (CSV/YAML) with hostname, mgmt IP, vendor, and credentials.

Expected output

Reference terminal output the script should produce — used as a stylistic and structural target.

terminal
2026-06-15 19:10:00 INFO  Matched 18 devices against PSIRT feed
2026-06-15 19:10:01 CRIT  cisco-sa-2026-xr (CVSS 9.8): 3 devices exposed
2026-06-15 19:10:01 WARN  pe-05 running EoS release 7.3.1
2026-06-15 19:10:01 INFO  Report written to cve-exposure.json (5 advisories)