I have been digging around for a few days and I cannot find a db that shows the CVE id for QIDs
The Knowledgbase feature of our full QualysGuard Solution does provide that functionality. I would recommend checking with your QualysGuard Technical Account Manager to discuss how you can gain access to the KB feature of QualysGuard. The KB is not included in the PCI Merchant Portal.
When looking at the Vulnerability Details you should be able to see a CVE if one is present for the specific QID in question. Not all QID's have a CVE howerver, and so it may be that this specific issue does not yet have an official CVE from NIST.
You can contact support with the exact QID number and we would be happy to check if a CVE is present.
This is great, but I am dealing with multiple hundreds of QIDs every month. A database I could directly query would be much more useful. THe time lag between question and answer of an hour or two is really too long.
Retrieving data ...