but CPEs assigned by NVD for previous issues for the same product had a different vendor, cpe:2.3:a:fit2cloud:1panel:*:*:*:*:*:*:*:*, see https://nvd.nist.gov/vuln/detail/CVE-2023-37477 for an example.
https://github.com/1Panel-dev/1Panel contains the following copyright statement so I believe the vendor assigned by NVD was accurate.
Copyright (c) 2014-2024 [FIT2CLOUD 飞致云](https://fit2cloud.com/), All rights reserved.
I had ran into multiple similar examples but I don't have a detailed list of similar issues.
For example https://github.com/CVEProject/cvelistV5/blob/main/cves/2024/39xxx/CVE-2024-39911.json contains
but CPEs assigned by NVD for previous issues for the same product had a different vendor,
cpe:2.3:a:fit2cloud:1panel:*:*:*:*:*:*:*:*
, see https://nvd.nist.gov/vuln/detail/CVE-2023-37477 for an example.https://github.com/1Panel-dev/1Panel contains the following copyright statement so I believe the vendor assigned by NVD was accurate.
Copyright (c) 2014-2024 [FIT2CLOUD 飞致云](https://fit2cloud.com/), All rights reserved.
I had ran into multiple similar examples but I don't have a detailed list of similar issues.