Vulnerability Advisory Content
Each Vulnerability advisory published security advisory should contain the required Information:
- Publication Date
- Original publication date
- Update dates for revisions
- Affected Products and Versions
- Complete list of affected products
- Vulnerable version ranges
- Non-vulnerable versions
- Vulnerability Description
- Summary of the issue
- CVE identifier(s)
- CWE classification
- Technical details (appropriate level)
- Impact Assessment
- CVSS score and vector
- Exploitability analysis
- Attack complexity
- Required privileges
- User interaction requirements
- Advisory Status
- Under investigation
- Fixes available
- Fixes pending
- Will not fix (with justification)
- Mitigation and Remediation
- Available fixes and versions
- Workarounds (if available)
- Configuration changes
- Compensating controls
- Detection methods
- Additional Resources
- Links to patches/updates
- Related advisories
- References and credit
- FAQ if needed
Need more information? Click categories or tags.
This is part of the DSMF by Hacktica
—–