-
As I mentioned, looking at the comparison testing, there might be a rounding error present. Attached some of the vector strings that returned different results.
[boundary_cases.txt](https://github.…
-
The attached file was generated with vulnogram.github.io
[CVE-0000-1234.json](https://github.com/user-attachments/files/16057307/CVE-0000-1234.json)
cvelib fails when trying to validate that file.…
-
At the moment the test case is a binary pass/fail case: https://docs.oasis-open.org/csaf/csaf/v2.0/os/csaf-v2.0-os.html#618-invalid-cvss:~:text=CSAFPID%2D9080700.-,6.1.8%20Invalid%20CVSS,-It%20MUST%20…
-
I noticed CVE-2023-28334 was scored with a "0" CVSS score. and was curious if this was intended? https://github.com/cisagov/vulnrichment/blob/ec966c2d052c8c1f5d36873bb68ead4bf6eedd08/2023/28xxx/CVE-20…
-
Is it possible to recategorise a CVSS score based on Environmental factors in some form of suppression type file?
-
**Describe the bug**
CVE-2024-28752 which is CRITICAL according to ossindex is reported as a HIGH by dependency check
**Version of dependency-check used**
The problem occurs using version 9.2.0 o…
-
Hi everyone! Is there any plans to support the new version of CVSS? https://www.first.org/cvss/v4-0/
-
When creating a report, any url placed inside the references field of a finding is automatically getting URL encoded, destroying the hyperlink.
Adding URL
![image](https://github.com/pwndoc-ng/pwn…
Fopje updated
2 weeks ago
-
Following the inclusion of your plugin within a NextFlow (24.04.2) container that I am building, a scan of the container detected an issue with the following packages:
- io.netty/netty-codec-http2 …
-
**Is your feature request related to a problem? Please describe.**
The current in-built calculator is for version 3.x of CVSS. There seems to be a lot of good improvements made in v4.0 that has just…