In the 5.1 schema, some valid CVSS score and severity pairs would fail validation due to the use of the multipleOf JSON schema keyword's rounding. To address this, we updated Cve-Services's copy of the CVE schema to have enums of acceptable values for CVSS scores, avoiding rounding issues.
Closes Issue #1204
Summary
In the 5.1 schema, some valid CVSS score and severity pairs would fail validation due to the use of the
multipleOf
JSON schema keyword's rounding. To address this, we updated Cve-Services's copy of the CVE schema to have enums of acceptable values for CVSS scores, avoiding rounding issues.Important Changes
CVE_JSON_5.1_bundled.json
,5.1_published_cna_container.json
multipleOf
.