Skip to content

Commit

Permalink
Switch to CVSSv2 for CVE-2017-5645 (apache/logging-log4j2#1707)
Browse files Browse the repository at this point in the history
  • Loading branch information
@vy
vy committed Nov 8, 2023
1 parent f9f88d0 commit 1d62cb5
Showing 1 changed file with 5 additions and 5 deletions.
10 changes: 5 additions & 5 deletions vdr.xml
View file
Original file line number Diff line number Diff line change
Expand Up @@ -414,12 +414,12 @@ Alternatively, users can set the `mail.smtp.ssl.checkserveridentity` system prop
<rating>
<source>
<name>NVD</name>
<url><![CDATA[https://nvd.nist.gov/vuln-metrics/cvss/v3-calculator?vector=AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H&version=3.1]]></url>
<url><![CDATA[https://nvd.nist.gov/vuln-metrics/cvss/v2-calculator?vector=(AV:N/AC:L/Au:N/C:P/I:P/A:P)&version=2.0]]></url>
</source>
<score>9.8</score>
<severity>critical</severity>
<method>CVSSv3</method>
<vector>AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H</vector>
<score>7.5</score>
<severity>high</severity>
<method>CVSSv2</method>
<vector>AV:N/AC:L/Au:N/C:P/I:P/A:P</vector>
</rating>
</ratings>
<cwes>
Expand Down

0 comments on commit 1d62cb5

Please sign in to comment.