2 Replies · Latest reply on Nov 21, 2017 8:34 AM by Anirudh Paluri

    NVD CVE feed is pointing to version 2.0 CVE instead of latest version

      In Secops vulnerabilities we have a feed URL enabled to pull vulnerabilities, but most of them have a difference CVE score in v2.0 vs v 3.0,

       

      example

      The below vulnerability has v2.0 score and 3.0 score, The feed in service now always picks v2.0, even the recent one

      NVD - CVE-2017-9714

       

       

       

       

      any suggestions ?