cve-search / vulnerability-lookup

Vulnerability-Lookup facilitates quick correlation of vulnerabilities from various sources, independent of vulnerability IDs, and streamlines the management of Coordinated Vulnerability Disclosure (CVD).
https://vulnerability.circl.lu
GNU Affero General Public License v3.0
136 stars 16 forks source link

Sighting #75

Closed cedricbonhomme closed 1 month ago

cedricbonhomme commented 1 month ago

Sightings: enable users to add observations to vulnerabilities with different types of sightings, such as:
seen, exploited, not exploited, confirmed, not confirmed, patched, and not patched.

Attributes of a sighting

For now we can only sight a vulnerability.

adulau commented 1 month ago

Following our discussion:

Type Description Negative/Opposite
seen The vulnerability was mentioned, discussed, or seen somewhere by the user. -
confirmed The vulnerability is confirmed from an analyst perspective. X
exploited This vulnerability was exploited and seen by the user reporting the sighting. X
patched This vulnerability was successfully patched by the user reporting the sighting. X