-
As the script check the NIST database, could you update it to get the CVSS score v3 instead of v2?
Thanks
-
Hi,
As part of running OPENCGA v1.3.18 on our AWS platform, the ECR scanning has identified a number of critical vulnerabilities.
Please could the relevant libraries be updated and the new build …
-
## CVE-2020-10672 - High Severity Vulnerability
Vulnerable Library - jackson-databind-2.8.8.jar
General data-binding functionality for Jackson: works on core streaming API
Library home page: http://…
-
## CVE-2020-10968 - High Severity Vulnerability
Vulnerable Library - jackson-databind-2.8.8.jar
General data-binding functionality for Jackson: works on core streaming API
Library home page: http://…
-
## CVE-2018-14719 - Critical Severity Vulnerability
Vulnerable Library - jackson-databind-2.8.8.jar
General data-binding functionality for Jackson: works on core streaming API
Library home page: htt…
-
### Current Behavior:
I've been running Dependency-Track v4.5.0 and as a follow-up of https://github.com/DependencyTrack/dependency-track/issues/416, I've added this same component to my project and …
-
Like in the examples, we use a suppression rule that suppresses all vulnerablities below a CVSS score of 7. Our company policy demands that we handle every vulnerability by upgrading the library, addi…
-
### Current Behavior
Using Kubernetes 1.29, the API server container starts, properly connects with the DB, downloads external NVD files, and updates current project vulnerabilities without any issue…
-
## CVE-2018-14040 - Low Severity Vulnerability
Vulnerable Library - bootstrap-3.3.5.min.js
The most popular front-end framework for developing responsive, mobile first projects on the web.
Library h…
-
NIST has a web application that lets you generate a thorium line list given a few parameters. the site can accessed at https://physics.nist.gov/cgi-bin/TH/site.cgi. pretty straightforward api for maki…