search

sonatype-nexus-community / nexus-iq-chrome-extension

Chrome extension for use with Sonatype Nexus Lifecycle - IQ server
https://sonatype-nexus-community.github.io/nexus-iq-chrome-extension/
Apache License 2.0
20 stars 12 forks source link

cvss vector Explainer #272

Closed ctownshend closed 1 year ago

ctownshend commented 1 year ago

Add code to explain what the cvss vector means. refer to spec https://www.first.org/cvss/specification-document

CVSS VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

e.g. Attack Vector:Network Attack Complexity:Low Privileges Required:None User Interaction:None Scope:Unchanged Confidentiality Impact:High Integrity Impact:High Availability Impact:High

CVSS Attack Complexity Low Confidentiality HIGH Integrity HIGH Availability HIGH Attack Vector Network Privileges Required None User Interaction None Scope Unchanged

ctownshend commented 1 year ago

Requires React tidy up and tooltip fix

ctownshend commented 1 year ago

Added in 2.x under the CVSS String on the Vulnerability