Comments (2)
By "tags" if you meant the JSON key (eg. "cvssV3_1", "cvssV2_0", ..) I completely agree, and I argued against this format while JSON schema was being designed. IMHO it should be something "cvss" - thats it.
The version is anyway captured in the "version" field's value as "3.1", but I lost the argument.
IIRC mainly because when someone wants to provide both CVSS v2 and V3 scores at the same time, so the version numbers were hard coded in the field names.
If you think it is import to change this please raise this on the schema project https://github.com/CVEProject/cve-schema.
from vulnogram.
Rasied at: CVEProject/cve-schema#162
from vulnogram.
Related Issues (20)
- CVE Description auto-generate does not work after Download plus Open
- SSVC: Define term "Value Density" (and others) HOT 1
- Adding new user creates an admin user, even if admin option is de-selected
- Improve clarity of "Public At" input field to prevent accidental publishing d/t "scheduling" assumption HOT 1
- List of CAPEC impacts may be outdated
- CVE-2023-37466 (Critical) detected in vm2-3.9.14.tgz
- CVE-2023-37903 (Critical) detected in vm2-3.9.14.tgz
- CVE-2023-32313 (Medium) detected in vm2-3.9.14.tgz
- CVE-2023-45857 (Medium) detected in axios-0.21.4.tgz
- CVE-2023-32314 (Critical) detected in vm2-3.9.14.tgz
- CVE-2023-3696 (Critical) detected in mongoose-6.10.0.tgz
- Ability to reserve CVE for the prior year HOT 2
- Timeout for the CVE Portal Login doesn't always work.
- Update Preview tab to show the preview as on https://www.cve.org/CVERecord HOT 1
- CVE-Portal: Prevent CNA admins from locking themselves
- CVE-2023-26115 (High) detected in word-wrap-1.2.3.tgz
- CVE-2023-26159 (Medium) detected in follow-redirects-1.15.2.tgz
- CVE-2023-42282 (Critical) detected in ip-1.1.8.tgz, ip-2.0.0.tgz
- CVE-2022-25883 (High) detected in multiple libraries
- Embed an AJV validator for latest CNA container sub-schema validation prior to submission
Recommend Projects
-
React
A declarative, efficient, and flexible JavaScript library for building user interfaces.
-
Vue.js
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
-
Typescript
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
-
TensorFlow
An Open Source Machine Learning Framework for Everyone
-
Django
The Web framework for perfectionists with deadlines.
-
Laravel
A PHP framework for web artisans
-
D3
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
-
Recommend Topics
-
javascript
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
-
web
Some thing interesting about web. New door for the world.
-
server
A server is a program made to process requests and deliver data to clients.
-
Machine learning
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
-
Visualization
Some thing interesting about visualization, use data art
-
Game
Some thing interesting about game, make everyone happy.
Recommend Org
-
Facebook
We are working to build community through open source technology. NB: members must have two-factor auth.
-
Microsoft
Open source projects and samples from Microsoft.
-
Google
Google ❤️ Open Source for everyone.
-
Alibaba
Alibaba Open Source for everyone
-
D3
Data-Driven Documents codes.
-
Tencent
China tencent open source team.
from vulnogram.