Tomalrich

VDWG Issue 161: Proof of concept and training for implementation of purl in CVE Program

4

### Technical Initiative Vulnerability Disclosure Working Group ### Lifecycle Phase Graduated ### Funding amount $25000 ### Problem Statement Most cyberattacks, successful or not, exploit software vulnerabilities. Even though software developers...

A Proof of Concept for including purl identifiers in CVE Records

24

_Note 4/16: What is below was written before this week's on-again-off-again activity with the CVE Program and MITRE. Everything here is still quite relevant. The CVE Program has started preparing...

Discussions regarding purl implementation in the CVE Program

4

There is growing recognition in the CVE community that there needs to be an alternative software identifier to CPE available for use in CVE Records. Along with CPE, one of...