-
Confirm leveraging the service snyk will be a suitable alternative to baking in a github action docker scout solution
- Comparable CVEs are being reported
- CVEs reported are inline with twistloc…
-
- [ ] #51
```
LAYER: meta-java
PACKAGE NAME: classpath-initial-native
PACKAGE VERSION: 0.93
CVE: CVE-2008-5659
CVE STATUS: Unpatched
CVE SUMMARY: The gnu.java.security.util.PRNG class in GNU Cl…
-
The latest registry:2 container has critical CVEs.
`NAME INSTALLED FIXED-IN TYPE VULNERABILITY SEVERITY`
`libcrypto3 3.1.5-r0 3.1.6-r0 apk CVE-2024-5535 Critical`
`libcrypto3 …
wkbrd updated
2 months ago
-
# Proposed New Idea/Feature (required)
This feature aims to fill the gap between CVEs and MITRE ATT&CK techniques.
It will allow to map the CPE of an asset/device with the CVEs and the corresponding …
-
## Description
The method urlenc_decode (https://github.com/duosecurity/duo_unix/blob/master/lib/urlenc.c#L79) appears to be unused. This code is based on similar code from libcurl that has known CV…
-
There is a mapping between some GUIDs and CNAs that exists in the `providerMetadata` fields, e.g.
```json
"providerMetadata": {
"dateUpdated": "2022-07-03T22:16:27",
"orgId": "9a959283-ebb5-44…
-
|Wazuh version|Component|Install type|Install method|Platform|
|---|---|---|---|---|
| 4.8.x - 4.9.x | Vulnerability scanner| Manager | Packages/Sources | Any OS |
## Description
The Wazuh clu…
-
## What is your suggestion?
We evaluate coder in a high security offline environment. For that, we scanned our workspace image with code-server preinstalled with trivy. There were crititcal CVEs fo…
-
Install chef-18.4.12-1.el9.x86_64.rpm
view file /opt/chef/embedded/lib/ruby/gems/3.1.0/gems/rbs-2.1.0/steep/Gemfile.lock
Active Support version is listed as vulnerable to CVE-2023-22796
view fi…
-
I need a continually updated list of all published CVE IDs. Is this published anywhere as a list versus needing to pull all the CVE JSON records and parse them for the ID?