pam-ussh icon indicating copy to clipboard operation
pam-ussh copied to clipboard

Published 20 hours ago verified publisher icon uber

How security vulnerabilities for this package is tracked in NIST/NVD?

Open vaibhav-rustagi opened this issue 3 years ago • 2 comments

Hi,

I was trying to find cpe_uri associated with this package in NIST/NVD so that COS (https://cloud.google.com/container-optimized-os/docs) can track security vulnerabilities associated with it. However, based on the search there was no cpe_uri associated. From the past security vulnerabilities, I could find https://hackerone.com/reports/204802 security vulnerability but there was no CVE Number assigned for that in that bug.

Could you help in providing information as what cpe_uri can be used by downstream users to track security vulnerability in this package from NIST/NVD?

vaibhav-rustagi avatar Nov 23 '21 23:11 vaibhav-rustagi

Gentle ping for the above question.

vaibhav-rustagi avatar Dec 02 '21 17:12 vaibhav-rustagi

cc: @jessespears @pmoody-

vaibhav-rustagi avatar Dec 22 '21 17:12 vaibhav-rustagi