Consider CWE IDs and VectorCVSS scores when merging vulnerabilities

fasten-project / vulnerability-producer

Gathers, enriches and publishes vulnerability information to a Kafka topic.

https://www.fasten-project.eu/

Apache License 2.0

6 stars 3 forks source link

Consider CWE IDs and VectorCVSS scores when merging vulnerabilities #124

Closed mir-am closed 2 years ago

mir-am commented 2 years ago

This PR adds a small fix to consider CWE IDs and VectorCVSS scores when merging vulnerabilities. Some vulnerabilities lack this two information while they are present on the NVD website.

mir-am commented 2 years ago

@MagielBruntink, this is a very small fix that can be reviewed and merged quickly.