This n8n workflow provides an automated solution for monitoring cybersecurity vulnerabilities by retrieving CVE (Common Vulnerabilities and Exposures) details and change history from the National Vulnerability Database (NVD) API, then logging this data into Google Sheets for analysis and record-keeping. It is ideal for security teams or organizations aiming to stay updated on vulnerabilities relevant to their systems.
The workflow begins with two webhooks: one for fetching specific CVE details and another for obtaining CVE change history. When triggered with a CVE ID via URL query parameters, each webhook initiates a sequence of API requests to the NVD, authenticated using HTTP Header Auth credentials.
In the first sequence, the ‘Fetch CVE from NVD API’ node retrieves detailed vulnerability data from NVD. The subsequent ‘Parse CVE JSON → Flat Format’ node processes this data, extracting key information such as CVE ID, description, severity, CVSS metrics, and references, then formats it into a flat structure suitable for logging.
This parsed data is then appended to a Google Sheet named ‘CVE Lookup’, enabling easy access and management.
The second sequence fetches the change history for a specific CVE via another API request in ‘Fetch CVE History from NVD API’. The ‘Parse CVE History JSON → Flat Format’ node processes this historical data, extracting details such as change event, source, timestamp, and specific modifications.
This information is logged into a separate Google Sheet called ‘CVE History’, providing a chronological record of vulnerability updates.
Throughout, sticky notes provide helpful setup instructions and context for users, making it suitable for implementation within cybersecurity tracking platforms. The workflow ensures continuous, automated updates, reducing manual efforts in vulnerability management.
Reviews
There are no reviews yet.