chg: [user-manual] Added some examples of correlations.

cedricbonhomme · cedricbonhomme · commit 406a2b172320 · 2025-02-17T15:08:30.000+01:00
diff --git a/content/user-manual/correlations/index.md b/content/user-manual/correlations/index.md
@@ -9,4 +9,94 @@ toc: true
 
 Vulnerability-Lookup not only retrieves vulnerability information from various sources
 (such as NIST, PySec, and GitHub) but also connects related vulnerabilities, exploits,
-affected software, sightings, and other relevant metadata (Vulnrichment, CISA KEV).
+affected software, sightings, and other relevant metadata (Vulnrichment, CISA KEV).
+
+
+Related vulnerabilities are located in the container ``vulnerability-lookup:linked``:
+
+```bash
+$ curl --silent 'https://vulnerability.circl.lu/api/vulnerability/CVE-2015-2051?with_linked=true' | jq 'keys'
+[
+  "containers",
+  "cveMetadata",
+  "dataType",
+  "dataVersion",
+  "vulnerability-lookup:linked"
+]
+
+```
+
+The correlations is based on the various sources used by the Vulnerability-Lookup installation:
+
+```bash
+$ curl --silent 'https://vulnerability.circl.lu/api/vulnerability/CVE-2015-2051?with_linked=true' | jq '.["vulnerability-lookup:linked"] | keys'
+[
+  "fkie_nvd",
+  "github",
+  "gsd",
+  "variot"
+]
+```
+
+You can easily get related vulnerabilities from a specific source:
+
+```bash
+$ curl --silent 'https://vulnerability.circl.lu/api/vulnerability/CVE-2015-2051?with_linked=true' | jq '.["vulnerability-lookup:linked"]["github"]'
+[
+  [
+    "ghsa-x629-5xff-w7qg",
+    {
+      "schema_version": "1.4.0",
+      "id": "GHSA-x629-5xff-w7qg",
+      "modified": "2025-01-06T15:30:58Z",
+      "published": "2022-05-17T03:11:58Z",
+      "aliases": [
+        "CVE-2015-2051"
+      ],
+      "details": "The D-Link DIR-645 Wired/Wireless Router Rev. Ax with firmware 1.04b12 and earlier allows remote attackers to execute arbitrary commands via a GetDeviceSettings action to the HNAP interface.",
+      "severity": [
+        {
+          "type": "CVSS_V3",
+          "score": "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"
+        }
+      ],
+      "affected": [],
+      "references": [
+        {
+          "type": "ADVISORY",
+          "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-2051"
+        },
+        {
+          "type": "WEB",
+          "url": "https://supportannouncement.us.dlink.com/announcement/publication.aspx?name=SAP10282"
+        },
+        {
+          "type": "WEB",
+          "url": "https://www.exploit-db.com/exploits/37171"
+        },
+        {
+          "type": "WEB",
+          "url": "http://securityadvisories.dlink.com/security/publication.aspx?name=SAP10051"
+        },
+        {
+          "type": "WEB",
+          "url": "http://www.securityfocus.com/bid/72623"
+        },
+        {
+          "type": "WEB",
+          "url": "http://www.securityfocus.com/bid/74870"
+        }
+      ],
+      "database_specific": {
+        "cwe_ids": [
+          "CWE-77"
+        ],
+        "severity": "HIGH",
+        "github_reviewed": false,
+        "github_reviewed_at": null,
+        "nvd_published_at": "2015-02-23T17:59:00Z"
+      }
+    }
+  ]
+]
+```
