Vulnerability Data

 View Only

Working Group Leadership

CSA Support

• Josh Buker - [email protected]

Co-chairs

• Kurt Seifried

• Josh Buker

Latest Discussion Posts

  • Thanks for the feedback Kurt. It's good to know. I'm also looking at OSV and SPDX. One thing I'm considering is using OSV with extended attributes for the individual CVSS attribute fields that the NVD CVE API schema has. ------------------------------ ...

    1 person likes this.
  • We are generally using the OSV format, the CVE format is to limiting, although some of the problems have been fixed in CVE v5 it's not really a good fit for us. Long term we may end up using STIX or some SBOM format depending on exactly what we're doing. ...

    1 person likes this.
  • I'm looking at OpenVEX and the NVD CVE API formats. Are there other formats to consider and what are the pro and cons of each? ------------------------------ John Wang VP Product Management Saviynt ------------------------------

    1 person likes this.
  • Hi all, The Vuln Data working group meeting minutes for November 5, 2024 are available here: https://docs.google.com/document/d/1tq99BYwBvMikVfMi_JdNBB81I5PBoGvUk9bgpSLspao/edit If you have any questions, let me know! ------------------------------ ...

    1 person likes this.
  • Hi all, The Vuln Data working group meeting minutes for October 8, 2024 are available here: https://docs.google.com/document/d/1CmgqFjhDPPTFL-JhJzMesqxn5hO0Vv7JFCENEsJmgME/edit If you have any questions, let me know! ------------------------------ ...

    1 person likes this.

Latest Shared Files

Log in to see this information

Either the content you're seeking doesn't exist or it requires proper authentication before viewing.

Current Members