SQL Query To Find CVE Numbers Associated With Qnumbers

Version 5

    Purpose

     

    This document provides a SQL query to find CVE numbers associated with Qnumbers.

     

    Steps


    Basic steps to use the attached SQL query:

    1. Ensure Protect is closed.
    2. Open SQL Server Management Studio
    3. Connect to the database.
    4. Backup the database.
      http://community.shavlik.com/docs/DOC-23037
    5. Open QueryforCVE.sql into a query window.
      http://community.shavlik.com/docs/DOC-23137
    6. Read disclaimer at the top.
    7. Execute the script

     

    You can also copy the below query and run it manually.

     

    Disclaimer:                       

    Executing these SQL Statements is at your own risk. Customers should understand */ these SQL Statements prior to executing them. Shavlik does not warrant that the */SQL Statements will be uninterrupted or error-free. The entire risk as to the results and performance of the SQL Statement is assumed by person executing the SQL Statements. Shavlik is not responsible for the damage caused by executing these SQL Statements.                                           

     

    Select Distinct Reporting.Cve.Name as CVE
    ,Reporting.Patch.Id as PatchID
    ,Reporting.Patch.Bulletin
    ,Reporting.Patch.QNumber
    ,Reporting.Patch.BulletinTitle
    ,Reporting.Patch.ReleasedOn
    FROM Reporting.Cve,Protect.Reporting.Patch,Reporting.PatchAppliesTo
    WHERE Reporting.PatchAppliesTo.PatchId = Reporting.Patch.Id
    AND Reporting.PatchAppliesTo.CveId = Reporting.Cve.Id

     

    Please note: If you are searching for a specific CVE number add the following to the end of the above query to only show the specific CVE, leave the apostrophes and edit the CVE number.

     

    And Name = 'CVE2014-0590'

     

    Example of query to display specific CVE:

     

    Select Distinct Reporting.Cve.Name as CVE

    ,Reporting.Patch.Id as PatchID

    ,Reporting.Patch.Bulletin

    ,Reporting.Patch.QNumber

    ,Reporting.Patch.BulletinTitle

    ,Reporting.Patch.ReleasedOn

    FROM Reporting.Cve,Protect.Reporting.Patch,Reporting.PatchAppliesTo

    WHERE Reporting.PatchAppliesTo.PatchId = Reporting.Patch.Id

    AND Reporting.PatchAppliesTo.CveId = Reporting.Cve.Id

    AND Name = 'CVE-2014-0590'

     

     

    Affected Products


    Shavlik Protect 9.1 and newer