OSV tab
Updated: 2024-12-10 SBOM Central
The OSV tab contains five sub tabs specifying vulnerability data imported from OSV.
- Info
- Score
- Base metrics
- Raw data
- Exploits
Info
| Box | Description |
|---|---|
| Summary | Short description |
| Details | Description of vulnerability. |
| OSV link | OSV identity and link to the vulnerability in OSV. |
| Aliases | Alias identities (e.g. in NVD) |
| Severity | Base severity |
| Release date | Release date in OSV |
| Last update | Last update time by OSV |
| Last scan | Last time SBOM Central performed a scan of this vulnerability. |
| CWE | CWE identity |
| Priority | CWE priority (as specified in the uploaded priority list, see main menu CWE). |
| Score | CWE score |
Score
The Score tab shows a bar chart with two separate bars with numerical values:
- the CVSS base metrics bar.
- the overall metrics bar (final CVSS Score) including the temporal and environmental metrics.
AND
- a resulting scoring vector string.
Base metrics
The Base metrics tab contains the Base Score reflecting the severity of a vulnerability according to its intrinsic characteristics which are constant over time and assume the reasonable worst-case impact across different deployed environments.
The characteristics are described in detail here (external link to first.org).
Hovering the mouse over a characteristic/property opens an explanation box.
Raw data
Raw data imported from OSV.
Exploits
Exploit information retrieved from OSV.
