vaibhav-rustagi
commented
2 years ago Gentle ping for the above question.
Open vaibhav-rustagi opened 2 years ago
vaibhav-rustagi
commented
2 years ago Gentle ping for the above question.
vaibhav-rustagi
commented
2 years ago cc: @jessespears @pmoody-
Hi,
I was trying to find cpe_uri associated with this package in NIST/NVD so that COS (https://cloud.google.com/container-optimized-os/docs) can track security vulnerabilities associated with it. However, based on the search there was no cpe_uri associated. From the past security vulnerabilities, I could find https://hackerone.com/reports/204802 security vulnerability but there was no CVE Number assigned for that in that bug.
Could you help in providing information as what cpe_uri can be used by downstream users to track security vulnerability in this package from NIST/NVD?