issues
search
cisagov
/
vulnrichment
A repo to conduct vulnerability enrichment.
Creative Commons Zero v1.0 Universal
462
stars
35
forks
source link
issues
Newest
Newest
Most commented
Recently updated
Oldest
Least commented
Least recently updated
CVE Incorrectly Assigned Chrome CPE
#123
j-baines
closed
7 hours ago
2
Incorrect CPE data for CVE-2024-29205
#122
tarraschk
closed
12 hours ago
1
Incorrect CPE assignments, e.g CVE-2024-21489
#121
serkanozkanssc
opened
2 days ago
3
CVE-2024-46503 severity question
#120
darakian
opened
3 days ago
1
Simplify the PR template
#119
todb-cisa
closed
1 week ago
0
Update bug report template
#118
todb-cisa
closed
1 week ago
2
Vulnrichment wip
#117
amanion-cisa
closed
1 week ago
0
CVE-2024-36670 CWE-79 assigned by CISA ADP is incorrect
#116
Crashedmind
closed
2 weeks ago
0
CVE-2024-33868 CWE-79 assigned by CISA ADP is incorrect
#115
Crashedmind
closed
2 weeks ago
0
CVE-2024-30922 CWE-200 assigned by CISA ADP is incorrect
#114
Crashedmind
closed
2 weeks ago
0
CVE-2024-33881 CWE-400 assigned by CISA ADP is incorrect
#113
Crashedmind
closed
2 weeks ago
0
CVE-2024-5158 CWE-22 assigned by CISA ADP is incorrect
#112
Crashedmind
closed
2 weeks ago
0
CVE-2024-39705 CWE-300 assigned by CISA ADP is incorrect
#111
Crashedmind
closed
2 weeks ago
0
CVE-2012-6664 CWE-200 assigned by CISA ADP is incorrect
#110
Crashedmind
closed
2 weeks ago
1
CVE-2023-49224 CWE assigned by CISA ADP is incorrect
#109
Crashedmind
closed
3 weeks ago
1
Fix up default issue/PR templates
#108
todb-cisa
opened
3 weeks ago
1
Incorrect vendor and product name in CVE-2024-20478
#107
Gokul1902
closed
4 weeks ago
1
CVSS update for CVE-2024-28064
#106
delpeter
closed
4 weeks ago
2
CVE-2024-27394 analysis re-check
#105
todb-cisa
closed
4 weeks ago
1
Update affected versions for CVE-2024-7969
#104
mprpic
closed
4 weeks ago
1
CVE-2024-45321 has CWE-94, should probably be CWE-494
#103
stigtsp
closed
4 weeks ago
1
Readme lineno links
#102
todb-cisa
closed
1 month ago
1
Differentiate between crash-poc and full-poc in Exploitation
#101
ruppde
closed
1 month ago
2
Update metrics for recent libolm CVEs
#100
davidegirardi
closed
3 weeks ago
5
Readme has incorrect line numbers and links to code
#99
nicpenning
closed
1 month ago
2
CVSS 4.0 Usage
#98
nicpenning
closed
1 month ago
3
Severity rating on CVE-2024-42992
#97
darakian
closed
1 month ago
4
Incorrect CPEs for intel CVEs on August 14th
#96
serkanozkanssc
closed
4 weeks ago
2
Instead of asterisk(*), version number found in cpes field for CVE-2024-34750
#95
RamvigneshPasupathy
closed
1 month ago
5
Incorrect affected config version found in CVE-2024-34750 json
#94
RamvigneshPasupathy
closed
1 month ago
2
Why is the CISA-ADP severity rating so high for something considered low by the vendor? (CVE-2024-5535)
#93
pcreager23
closed
2 months ago
2
CPE naming inconsistent with NVD
#92
serkanozkanssc
closed
2 months ago
1
Add wording about SSVC version to the readme. Addresses #90
#91
jwoytek-cisa
closed
2 months ago
1
Clearly reference SSVC version source
#90
todb
closed
2 months ago
1
Add Package URLs
#89
pombredanne
closed
2 months ago
2
Add a Contributing.md
#88
todb-cisa
closed
2 months ago
2
The CWE-400 assigned to CVE-2021-47389 should be more specific and MITRE discourages its use. Suggested: CWE-401: Missing Release of Memory after Effective Lifetime, or parent CWE-772: 'Missing Release of Resource after Effective Lifetime
#87
Crashedmind
closed
2 months ago
1
The CWE-1281 assigned to CVE-2021-47242 is inappropriate - it should be CWE-667: Improper Locking or a CWE related to locking
#86
Crashedmind
closed
2 months ago
1
CVSS reported as "0" for CVE-2023-28334
#85
patrickmgarrity
closed
2 months ago
3
The CWE-843 assigned to cve-2024-0042 is inappropriate - it should be CWE-295
#84
Crashedmind
closed
2 months ago
1
KEV schema doc pointer
#83
todb-cisa
closed
3 months ago
1
search_api_fulltext links might be confusing
#82
ElectricNroff
opened
3 months ago
2
Update kb4581
#81
fwininger
closed
2 weeks ago
5
Update CVE-2024-5688.json
#80
fwininger
closed
3 months ago
1
fix typo in vulnrichment_big.dot
#79
jrheling
closed
2 months ago
2
Create some boilerplate text about pull requests to CVE entries
#78
todb-cisa
closed
2 months ago
9
Document schema in the README
#77
todb-cisa
closed
3 months ago
1
"UNKOWN" typo for SSVC version in CVE-2024-23108
#76
ElectricNroff
closed
3 months ago
1
Incorrect product for CVE-2024-37794 and CVE-2024-37795
#75
serkanozkanssc
closed
3 months ago
1
CVE-2024-27306 incorrect version
#74
aniruth37
closed
3 months ago
1
Next