The second problem is that I still edit the product description file data/classification/products.json manually. Bulk adding Microsoft products from MS CVE data ![]() ![]() This allows you to correctly assess vulnerabilities even if there are some problems in the main data sources. And this value will be used in the report. Therefore, I decided to add the ability to manually set the CVSS value for some vulnerabilities in data_redefinitions.py. Although this vulnerability itself exists for the Edge browser.īut on the other hand, CVSS can be found on other sites, such as White Source. The CVSS for this vulnerability is not available on the Microsoft website. This vulnerability does not exist in NVD. For example, this was the case with CVE-2022-1364 Type Confusion in V8 (Chromium). Hello everyone! In this episode, I want to talk about the latest updates to my open source vulnerability prioritization project Vulristics.Īlternative video link (for Russia): < CVSS redefinitionsĪ fairly common problem: we have a CVE without an available CVSS vector and score.
0 Comments
Leave a Reply. |
AuthorWrite something about yourself. No need to be fancy, just an overview. ArchivesCategories |