Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

feat: Add support for CVSSv4 #4238

Open
anthonyharrison opened this issue Jul 2, 2024 · 0 comments · May be fixed by #4944
Open

feat: Add support for CVSSv4 #4238

anthonyharrison opened this issue Jul 2, 2024 · 0 comments · May be fixed by #4944
Labels
enhancement New feature or request hackathon Issues for folk participating in the Open Ecosystems hackathon
Milestone
future

Comments

@anthonyharrison
Copy link
Contributor

Description

Some of the entries in the NVD now include CVSS v4 data. This should be used as the primary scoring metric if available.

The Common Vulnerability Scoring System (CVSS) provides a way to capture the principal characteristics of a vulnerability and produce a numerical score reflecting its severity. CVSS version 4.0 is the next generation of the Common Vulnerability Scoring System standard; released November 1, 2023. CVSS v4.0 provides increased granularity for Base metrics, a new Supplemental metric group, a different methodology for determining severity and more. For more information regarding CVSS v4.0 please visit https://www.first.org/cvss/v4.0/specification-document.

Why?

Provides an updated metric to assess the severity of a vulnerability
@anthonyharrison anthonyharrison added the enhancement New feature or request label Jul 2, 2024
@anthonyharrison anthonyharrison changed the title feat: Add support CVSSv4 feat: Add support for CVSSv4 Jul 2, 2024
@terriko terriko added this to the future milestone Jul 2, 2024
@terriko terriko added the hackathon Issues for folk participating in the Open Ecosystems hackathon label Jul 29, 2024
@JigyasuRajput JigyasuRajput linked a pull request Mar 14, 2025 that will close this issue
Open
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Assignees
No one assigned
Labels
enhancement New feature or request hackathon Issues for folk participating in the Open Ecosystems hackathon
Projects
None yet
Milestone
future
Development

Successfully merging a pull request may close this issue.

feat(CVSSv4): Add support for CVSSv4 to cve-bin-tool JigyasuRajput/cve-bin-tool
2 participants
@terriko @anthonyharrison