JonathanLEvans

Hi @Zepnhouse, could you provide an improved CVSS vector if the current one is incorrect?

There isn't a schema for reserved records in 5.x. See https://github.com/CVEProject/cve-schema/issues/126 for the decision.

I believe that the [/cve-id/{id}](https://cveawg.mitre.org/api-docs/#/CVE%20ID/cveIdUpdateSingle) API is meant to be used for determining the validity of a CVE rather than CVE record.

Hi @mareknovotny, you are right, Guava produces two lines of jars. Unfortunately, the way they are packaged and uploaded to [Maven](https://central.sonatype.com/artifact/com.google.guava/guava/33.0.0-jre/versions) the system does not see the distinct lines. Instead,...

Hi @abnegate, thank you for your contribution. Could you provide a reference link that documents the fix in 1.3.0? Also, while we can update the description in our database, we...

Hi @fpurser, is there a specific change you want to make to the GHSA-3h5v-q93c-6h6q advisory or is your issue with a Dependabot alert? If your issue is with Dependabot, please...

Hi @AHMED11178 , the pull request seems to be missing the changes you want to make. Could you clarify what you are asking for?

Hi @GAEAlimited, the pull request seems to be missing the changes you want to make. Could you clarify what you are asking for?

Hi @MarkLee131, I was unable to find MISP in the [Composer repository.](https://packagist.org/). Could you please provide the link to the package in Composer or any of our other [supported ecosystems](https://github.com/github/advisory-database/?tab=readme-ov-file#supported-ecosystems)?

Hi @GuyGoldenberg, the advisory currently has both the CVSS v3.1 score (provided by the maintainer) and the CVSS v4 score (provided by GitHub). Is there a problem with the CVSS...