-
The vulnerabilities database NVD only finds xstream component with VENDOR= xstream_project
Shouldn't Github xstream collaborators fix that contacting NVD?
The CPE for xstream at NVD is currently: …
-
**What happened**:
When running `syft` against a project using Swift Package Manager and a version 3 Package.resolved file, an error occured (`error=unknown swift package manager version, 3.000000 …
-
I'm trying to install pak on Red Hat Enterprise Linux 7 (`CPE OS Name: cpe:/o:redhat:enterprise_linux:7.9:GA:server"`). I'm getting an error when pak tries to build its own HTML documentation. The err…
-
About 6600 of the 9600+ match lines do not have a `cpe:/` entry. This should be supported at least for the most common services and those lines which have OS information. 291 of the 2172 match lines w…
-
[CVE Configuration Update Request] Update Suggestion - CVE-2022-48662 - Cvss3 : 7.8
https://www.linuxkernelcves.com/cves/CVE-2022-48662
https://gitlab.com/cip-project/cip-kernel/cip-kernel-sec/-/blob…
-
Is there an official Common Platform Enumeration (CPE) for the radcli library?
If not, what is the suggested way to follow possible security vulnerabilities?
Thank you very much in advance!
-
### Package URl
pkg:maven/io.prometheus/prometheus-metrics-config@1.2.1
### CPE
cpe:2.3:a:prometheus:prometheus:1.2.1:*:*:*:*:*:*:*
### CVE
CVE-2019-3826
### ODC Integration
{"la…
-
- I ran the red hat sbom importers + the csaf importers for at least 5 minutes
- The I hit `GET /api/v1/package/b11f922a-6ab3-553f-b703-6fc65d0f1fe9` which corresponds to the package whose purl is `p…
-
Hello, I am trying to include CPE metrics into Tensorboard report as it was done on the Figure 2 in this paper. Also, I'd like to depict chart with difference doubly robust and others estimators.
I …
-
## Description
A [community user](https://wazuh.slack.com/archives/C0A933R8E/p1722576717718689?thread_ts=1722425139.755329&cid=C0A933R8E) reported false positives on Windows Server on 4.8.1.
- F…