This project aims to predict the severity of vulnerabilities, measured by the CVSS v3 base score, based on their descriptions using machine learning. The dataset is sourced from the National Vulnerability Database (NVD) and includes CVEs from 2002 to 2024.
Before you begin, ensure you have met the following requirements:
- Python 3.7 or higher
- Install dependencies from
requirements.txtby running:
pip install -r requirements.txtDependencies include:
scikit-learnpandasmatplotlibseabornwordcloudnumpy
To run the Python script for data preprocessing, feature extraction, and model training, follow these steps:
-
Clone the repository:
git clone https://github.com/davidhwilliams/cve-cvss-prediction.git
-
Navigate to the repository directory:
cd cve-cvss-prediction -
Run the Python script:
python CveDataMirror.py
To interactively explore the data and train models, you can use the provided Jupyter notebook. Follow these steps:
-
Start Jupyter Notebook:
jupyter notebook
-
Open the notebook from the notebooks/ directory:
final.ipynb
This notebook includes:
- Exploratory Data Analysis (EDA) on CVE descriptions.
- Feature extraction using TF-IDF.
- Training and evaluating a Random Forest Regressor.
- Hyperparameter tuning using GridSearchCV.
- Model performance visualization.
- Mean Squared Error (MSE): Measures the average squared difference between actual and predicted CVSS v3 base scores.
- R-squared: Indicates how well the model explains the variance in the CVSS scores.
- Feature Importance: Identifies the most predictive terms in the CVE descriptions.
- Use GPU-based training to reduce computation time.
- Add more data, especially for low and high-severity vulnerabilities.
- Experiment with different models such as gradient boosting or neural networks.
This project is licensed under the MIT License - see the LICENSE file for details.