@attritionorg is it possible to search your vulnerability database for high criticality, straight from vendor, anonymous credit, bugs?
-
-
@attritionorg@SushiDude@thegrugq@4Dgifts agree. anyone seen a true SaaS CVE yet? -
@daviottenheimer@SushiDude@thegrugq@4Dgifts out of scope for CVE,@osvdb, secunia, BID, etc. software, not services are tracked. -
@attritionorg@SushiDude@thegrugq@4Dgifts@OSVDB so if software is run as a service, no need to disclose/notify vulns? -
@daviottenheimer@SushiDude@thegrugq@4Dgifts@OSVDB no, just that traditional VDBs don't track it. OSF has a project to track those.. -
@attritionorg@SushiDude@thegrugq@4Dgifts@OSVDB /me runs off to check OSF for known vulns -
@daviottenheimer most of the site-specific vulns (our term, rather than SaaS) are not added but we have a list going -
@attritionorg but i'm talking more than outage. bypass, disclosure, loss -
@daviottenheimer outage is the primary thing we have been tracking decently. site-specific vulns (any kind) is next goal - 8 more replies
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.