Closed TudorCiochina closed 7 years ago
CVE version string fractional compare. False positives might get generated but this can be prevented by implementing blacklist mechanism which contain partial or full CPE, vendor and/or product and/or version. Curly added.
LGTM - thanks!
Found an example of NVD derp..
+ Configuration 1 * OR * cpe:/a:gparted:gparted:14.1 and previous versions
gparted uses 0. prefixing..
CVE version string fractional compare. False positives might get generated but this can be prevented by implementing blacklist mechanism which contain partial or full CPE, vendor and/or product and/or version. Curly added.