To import Vulnerabilities data into Insight you navigate to the Import section in the object schema configuration. You can read about all the possibilities in the Insight Import documentation found here: General Import Concepts
Import Type Settings
Optional Date patterns
You don't need to specify the date pattern in the general import configuration settings. However, it could be wise to specify them since you will get some improved performance.
Date Format | dd/MM/yyyy |
Date/Time Format | dd/MM/yyyy hh:mm |
Module Specific Configuration
| Name | Description |
|---|---|
| NVD Data Feed | Optional Vulnerabilities Data Endpoint from https://nvd.nist.gov/vuln/data-feeds Build full CVE-Database The Modified Data Feed Endpoint are always fetched. If you like to build up a full NVD-Database (from 2002-until now) You need to select and import additional endpoints, one by one and only one time! After imported a yearly NVD-Data Package changes will be automatically updated based on the Modified Data Feed. Attention importing all NVD-Data will end in over 300.000 Objects and this will need a lot of configured JVM memory. read more here Insight System Requirements |
| Offline Mode | If this option is selected, you have to place the manual downloaded NVD-Packages to the import folder. You will find the folder at <JIRA-HOME>/import/insight/cve |