-
建议新增RSS的漏洞推送,
例如
1.k8s官方的RSS
https://k8s.io/docs/reference/issues-security/official-cve-feed/feed.xml
2.高危漏洞的CVE推送
https://cvefeed.io/rssfeed/severity/high.xml
3.最新的CVE推送
https://cvefeed.io/rss…
-
**What happened**:
Scan on image that has python3-werkzeug-3.3.2-150400.23.1.x86_64 installed.
It generates high vulnerability:
NAME INSTALLED FIXED-IN …
-
This makes https://cve-osv-conversion.storage.googleapis.com/osv-output/CVE-2023-4039.json unable to be successfully analysed by OSV.dev and therefore doesn't get imported:
```
osv.third_party.uni…
-
## CVE-2019-12384 - Medium Severity Vulnerability
Vulnerable Library - jackson-databind-2.8.8.jar
General data-binding functionality for Jackson: works on core streaming API
Library home page: http:…
-
## CVE-2019-14439 - High Severity Vulnerability
Vulnerable Library - jackson-databind-2.8.8.jar
General data-binding functionality for Jackson: works on core streaming API
Library home page: http://…
-
## CVE-2018-12023 - High Severity Vulnerability
Vulnerable Library - jackson-databind-2.8.8.jar
General data-binding functionality for Jackson: works on core streaming API
Library home page: http://…
-
## CVE-2018-12022 - High Severity Vulnerability
Vulnerable Library - jackson-databind-2.8.8.jar
General data-binding functionality for Jackson: works on core streaming API
Library home page: http://…
-
Vulnerable Library - sdk-0.5.0.tgz
Path to dependency file: /package.json
Path to vulnerable library: /package.json
Found in HEAD commit: a1ea90026b0e0e3f577d061facd1e83cadbc2007
## Vulnerabili…
-
### Elasticsearch Version
7.17
### Installed Plugins
_No response_
### Java Version
Not Java specific
### OS Version
Not OS Specific
### Problem Description
Hello,
In v7.17 the documentation…
-
## CVE-2019-16943 - Critical Severity Vulnerability
Vulnerable Library - jackson-databind-2.8.8.jar
General data-binding functionality for Jackson: works on core streaming API
Library home page: htt…