Some CVEs have no base score assigned from the NIST, but have a score defined from github

l3montree-dev / devguard

DevGuard Backend - Manage your CVEs seamlessly, Integrate your Vulnerability Scanners, Security Framework Documentation made easy, Compliance to security Frameworks - OWASP Incubating Project

https://flawfix.dev

Other

37 stars 4 forks source link

Some CVEs have no base score assigned from the NIST, but have a score defined from github #130

Open Refoo0 opened 1 month ago

Refoo0 commented 1 month ago

We should include github basescores, if there is currently no base score from the nist available.

Example: https://nvd.nist.gov/vuln/detail/CVE-2024-34351

https://github.com/vercel/next.js/security/advisories/GHSA-fr5h-rqp8-mj6g