Hello Team -
Here is a situation, we receive various alerts from various different sources that contain CVE IDs. What I am trying to do is this using qualys API:
if CVE ID in (intelligence Source 1) exists in Qualys
Mark the intelligence source ticket to CLOSE status
Mark the intelligence source ticket to OPEN Status (this would mean that a particular CVE ID does not yet exist in Qualys) could be 0-day etc etc
What is the best way to approach this check and how would the call be written?
If anyone is doing something similar I would appreicate some input.