vulnerablecode icon indicating copy to clipboard operation
vulnerablecode copied to clipboard
verified publisher icon nexB

Add support to CVSSv4 & SSVC and import the data using vulnrichment

Open ziadhany opened this issue 1 year ago • 2 comments

issue: #1473 image

image

ziadhany avatar May 28 '24 15:05 ziadhany

@DennisClark @keshav-space @pombredanne @Hritik14

What vulnerability details would be most helpful for users to see within the CVSSv4 score? https://www.first.org/cvss/calculator/4.0#CVSS:4.0/AV:N/AC:H/AT:P/PR:L/UI:P/VC:L/VI:H/VA:N/SC:L/SI:L/SA:N

ziadhany avatar Jun 04 '24 16:06 ziadhany

The values provided in the grouping "Base Metrics" make sense here; I don't think we need more than those.

DennisClark avatar Jun 04 '24 16:06 DennisClark

we should merge this pull request first : #1502

ziadhany avatar Jul 10 '24 15:07 ziadhany

we should merge this pull request first : #1502

Ack @ziadhany, will hold my reviews on this until #1502 is reviewed and merged.

keshav-space avatar Jul 11 '24 11:07 keshav-space

FYI #1502 is merged now

TG1999 avatar Jul 22 '24 15:07 TG1999

@TG1999 Wait, I need to add the ref type and CPES references. The code also still needs to be reviewed.

ziadhany avatar Jul 22 '24 16:07 ziadhany