Registro de cambios
Versión 18.31.2 (2025-06-28)
- Commit 1745bOptimizaciónSlightly better loading times for the Live Updates View due to optimized query handling.
Versión 18.31.1 (2025-06-26)
- Commit c485aCorrección de erroresFixed an issue where CVSSv4 scores by third parties with a value of 0.0 were not shown correctly.
Versión 18.31.0 (2025-06-19)
- Commit b25dfFuncionalidadIndicator in the site footer shows which data pool is used to serve the user.
Versión 18.30.1 (2025-06-15)
- Commit 40bd7OptimizaciónPerformance improvement of al My Alert views.
Versión 18.30.0 (2025-06-14)
- Commit 22b80FuncionalidadSolicitud de clienteComplete overhaul of the My Alert overview to provide more data and better accessibility. This includes total, maximum, and average CVSS scores per alert.
- Commit 01b86FuncionalidadSolicitud de clienteMy Alert summaries can be shown per month to provide better accessibility to earlier alerts.
Versión 18.29.1 (2025-06-10)
- Commit da6c0Corrección de erroresFixed an issue where in vulnerability overviews field data for CVSSv2 was wrongfully accessed via cache if the server was under heavy load.
- Commit da6c0Corrección de erroresFixed an issue where in vulnerability overviews field data for CVSSv2 was wrongfully shown even though commits for it were rejected.
Versión 18.29.0 (2025-05-07)
- Commit b9127FuncionalidadOpening a support ticket creates a unique ticket number to make tracking easier.
Versión 18.28.3 (2025-06-06)
- Commit 17e13OptimizaciónCVE entries maintained by us as a CVE Numbering Authority (CNA) do also include temporal attributes for all the available CVSS vectors.
Versión 18.28.2 (2025-06-04)
- Commit f2375OptimizaciónKEV views do not display the exploitability status anymore, because this is always Attacked anyway.
Versión 18.28.1 (2025-06-02)
- Commit be29eOptimizaciónPerformance optimization to handle load and access peaks much better.
Versión 18.28.0 (2025-06-01)
- Commit eeb1aFuncionalidadCambio de APIIn API 1.20/2.45/3.81 introduction of the value A (Attacked) for the field
exploit_exploitability
. - Commit 6f71bFuncionalidadOverview lists of vulnerabilities which display exploitability information do now support the value Attacked to indicate entries which are known for real-word exploiting.
Versión 18.27.0 (2025-05-19)
- Commit e0463FuncionalidadCambio de APISolicitud de clienteIn API 3.80 introduction of a new CTI API query type
iplist_date
which allows to fetch a list of IP addresses added on a specific date.
Versión 18.26.1 (2025-05-14)
- Commit 17f96OptimizaciónLayout of email notification for password changes optimized.
Versión 18.26.0 (2025-05-13)
- Commit faa4eFuncionalidadCambio de APISolicitud de clienteIn API 3.79 introduction of the field
source_euvd_id
to reflect identifiers of the European Union Vulnerability Database.
Versión 18.25.3 (2025-05-08)
- Commit 8f54aOptimizaciónSolicitud de clientePermabans of weak comments was too aggressive and affected users which did not violate any expectations. This issue was reported by user portal.
Versión 18.25.2 (2025-05-04)
- Commit a5f89OptimizaciónImprovement of category and confidence tagging of Indicators of Compromise (IOC).
Versión 18.25.1 (2025-04-27)
- Commit 613efOptimizaciónImprovement of automated spam detection for comment posting of vulnerability entries. Malicious users are automatically temporarily or permanently banned from postig if they violate the terms.
Versión 18.25.0 (2025-04-26)
- Commit 004c0FuncionalidadCambio de APIIn API 3.78 introduction of the fields
source_cnvd_id
,source_cnvd_submit
,source_cnvd_open
,source_cnvd_severity
, andsource_cnvd_title
.
Versión 18.24.1 (2025-04-25)
- Commit 9d0ffOptimizaciónSolicitud de clienteThe creation of version ranges of affected vulnerabilities does provide a more accurate upper bound value. This improves accuracy of version lists and CPE lists alike.
Versión 18.24.0 (2025-04-23)
- Commit 93434FuncionalidadCambio de APISolicitud de clienteIn API 3.77 introduction of the virtual fields
source_gcve_cve
andsource_gcve_vuldb
to highlight our activity as GCVE Numbering Authority (GNA) for the Global CVE Allocation System (GCVE).
Versión 18.23.1 (2025-04-22)
- Commit 5e790OptimizaciónList of comments for vulnerability entries show the title of the entry as the tool tip of the VDB identifier.
- Commit 5e790OptimizaciónList of comments for vulnerability entries show the associated CVE in a dedicated column to provide better accessibility.
Versión 18.23.0 (2025-04-20)
- Commit e6859FuncionalidadSolicitud de clienteDedicated dashboard for Global CVE Allocation System (GCVE) available with most recent entries and their associated mappings.
- Commit b752bFuncionalidadSolicitud de clienteThe export section does provide free access to Global CVE Allocation System (GCVE) reference maps.
Versión 18.22.3 (2025-04-19)
- Commit 3a614OptimizaciónHiding unavailble fields of commit details which are not moderated yet.
Versión 18.22.2 (2025-04-18)
- Commit 5a426OptimizaciónVulnerability entries contain the GCVE identifier of CVE (range 0) and VulDB (range 100) if available.
Versión 18.22.1 (2025-04-17)
- Commit 64514OptimizaciónSolicitud de clienteImprovement of the accuracy of the virtual field
exploit_exploitability
which will assess multiple other fields to determine the most reasonable value.
Versión 18.22.0 (2025-04-16)
- Commit e0f77FuncionalidadVulDB has officially become a GCVE Numbering Authority (GNA) for the Global CVE Allocation System (GCVE). Our namespace is
100
and GCVE identifiers are derived from our VDB identifiers. GCVE identifiers are shown in the header and the source section of vulnerability entries.
Versión 18.21.6 (2025-04-03)
- Commit e3929OptimizaciónCVSS score handling of new commits in vulnerability entries is more robust.
Versión 18.21.5 (2025-03-31)
- Commit af45cCorrección de erroresThe average amount of vulnerability entry updates was not calculated correctly for the statistical overview.
Versión 18.21.4 (2025-03-30)
- Commit c690aOptimizaciónImprovement of performance by cleaning up unused code. Especially legacy code that was used for megablock handling.
Versión 18.21.3 (2025-03-29)
- Commit 96bb8OptimizaciónImprovement of the view of commit details to provide better data accessibility.
Versión 18.21.2 (2025-03-28)
- Commit a2393Corrección de erroresMail alerts were sent with the wrong language which has been reverted to being sent always in English.
Versión 18.21.1 (2025-03-27)
- Commit 750afOptimizaciónBetter weighting of CTI activity scores for older vulnerability entries.
Versión 18.21.0 (2025-03-25)
- Commit a743bFuncionalidadImprovement of CTI activity signal handling to better extract highly important entries and to demote older vulnerabilities.
Versión 18.20.4 (2025-03-20)
- Commit 35505Corrección de erroresFixed an issue in certain CTI views were the amount of references and samples was not displayed correctly.
Versión 18.20.3 (2025-03-19)
- Commit 5e5caOptimizaciónImprovement of translation of the web service to provide a better wording and reflect cultural context in details.
Versión 18.20.2 (2025-03-12)
- Commit 8b65dOptimizaciónImproved accessibility of submit moderation to increase performance and quality.
Versión 18.20.1 (2025-03-11)
- Commit 98de0OptimizaciónPerformance improvements of chart views which do not include timeseries data.
Versión 18.20.0 (2025-03-10)
- Commit 4a434FuncionalidadAdditional predictive view for Known Exploited Vulnerabilities which includes issues which might get added to the catalogue in the future.
Versión 18.19.1 (2025-03-09)
- Commit 72ac9OptimizaciónOptimization of the monoblock database engine to increase performance for certain special queries.
Versión 18.19.0 (2025-03-05)
- Commit 8ef0dFuncionalidadSolicitud de clienteWe provide a very accessible view for all recent entries declared as Known Exploited Vulnerabilities by CISA.
Versión 18.18.1 (2025-03-02)
- Commit adeb6Corrección de erroresFixed an issue where certain CVSSv4 CNA vector values were not stored properly during update processes. This affected updates happening between 2025-02-24 and 2025-03-01. They will be corrected in a later update run.
Versión 18.18.0 (2025-02-28)
- Commit 391ceFuncionalidadThe form to submit new vulnerabilities informs users about delays due to many open items waiting to be processed in the queue already.
Versión 18.17.3 (2025-02-27)
- Commit a3a19Corrección de erroresCambio de APIFixed an issue where the renewal for an API key did not show a login prompt if an unauthenticated user accessing the feature.
Versión 18.17.2 (2025-02-24)
- Commit 7b151Corrección de erroresFixed an issue where vulnerability entries without a CVSSv4 impact were not shown correctly in overview lists and detail views.
Versión 18.17.1 (2025-02-20)
- Commit 61977Corrección de erroresFixed an issue where votes for threads of vulnerability comments were not possible on certain instances.
Versión 18.17.0 (2025-02-18)
- Commit f2efeFuncionalidadSolicitud de clienteWe provide a statistical overview of all CWE that are used in our vulnerability database entries.
Versión 18.16.3 (2025-02-17)
- Commit 9b5d0OptimizaciónPerformance and stability optimization of vulnerability database queries.
Versión 18.16.2 (2025-02-16)
- Commit d4857OptimizaciónVulnerability submissions with weak or wrong disclosure links get much less community points.
Versión 18.16.1 (2025-02-02)
- Commit 861aaOptimizaciónCleaning obsolete code of features like threat intelligence, vulnerability edit handling, worldmap display, and blocklist maintenance.
Versión 18.16.0 (2025-01-29)
- Commit c9cdbFuncionalidadList of users with top activities shows number of points per year on average as well.
Versión 18.15.2 (2025-01-20)
- Commit 10affCorrección de erroresFixed an issue where complex searches regarding affected versions were not returning all associated results correctly.
Versión 18.15.1 (2025-01-19)
- Commit 369b1OptimizaciónImproved handling of version data of Linux Kernel vulnerability entries.
Versión 18.15.0 (2025-01-16)
- Commit 91aefFuncionalidadIt is possible to review commits live as well to see ongoing and upcoming changes to vulnerability entries.
Versión 18.14.9 (2025-01-15)
- Commit c4721Corrección de erroresFixed a rare issue where certain extended search queries were not able to collect the necessary vulnerability information.
Versión 18.14.8 (2025-01-13)
- Commit 92072OptimizaciónCambio de APIIn API 2.44/3.76 the ETag header of API responses is compressed to provide better performance.
Versión 18.14.7 (2025-01-05)
- Commit f402cOptimizaciónPublic vulnerability submits automatically hide real-world IP addresses to prevent any form of privacy leakage.
Versión 18.14.6 (2024-12-29)
- Commit d5923Corrección de erroresVulnerability entries with open edits were not properly rendered in user profiles.
Versión 18.14.5 (2024-12-26)
- Commit a077dOptimizaciónEmbargoed vulnerability submits are hidden on smaller screens to provide better visibility for important submits.
Versión 18.14.4 (2024-12-23)
- Commit 9a559OptimizaciónEditing a vulnerability entry will show a small tutorial to help new users enriching existing entries.
Versión 18.14.3 (2024-12-22)
- Commit 60777OptimizaciónBetter value analysis of vulnerability submissions to establish temporary and permanent bans of malicious activities.
Versión 18.14.2 (2024-12-21)
- Commit dd0d7OptimizaciónThe reference map for Tools also lists Qualys identifiers.
Versión 18.14.1 (2024-12-20)
- Commit fa758OptimizaciónBetter value analysis of vulnerability commits to establish temporary or permanent bans of malicious activities.
Versión 18.14.0 (2024-12-19)
- Commit 54d4bFuncionalidadCambio de APISolicitud de clienteIn API 3.75 the CTI API support the new query type
sector
which shows recent activities targeting specific sectors.
Versión 18.13.0 (2024-12-16)
- Commit da7dcFuncionalidadCambio de APISolicitud de clienteIn API 3.74 most CTI queries may include targeted software types and sectors.
Versión 18.12.6 (2024-12-12)
- Commit 13bd3OptimizaciónCambio de APIIn API 3.73 requesting CTI queries listing associated countries are now sorted in descending order of activity detection.
Versión 18.12.5 (2024-12-06)
- Commit 1081dOptimizaciónUpdate of most active countries for CTI data is much faster and demands less memory.
Versión 18.12.4 (2024-12-05)
- Commit 6cc69Corrección de erroresCambio de APISolicitud de clienteIn API 3.72 fixed an issue where VulDB CVSSv4 scores with a value of 0.0 were not shown properly. This affected just a few vulnerability entries. Thanks to Ryan Egbert for reporting this issue.
- Commit 6cc69Corrección de erroresCambio de APISolicitud de clienteIn API 3.72 fixed an issue where external CVSSv4 sources did not always contain
vulnerability_cvss4_cna_bvector
andvulnerability_cvss4_cna_btvector
fields. Thanks to Ryan Egbert for reporting this issue.
Versión 18.12.3 (2024-11-30)
- Commit 7b1beOptimizaciónFaster and more accurate merge of CPE data provided by NVD with our own CPE data.
Versión 18.12.2 (2024-11-28)
- Commit 534e8OptimizaciónCambio de APIOptimization of personal views for access history, search history, and API history.
Versión 18.12.1 (2024-11-25)
- Commit 0bb99OptimizaciónImproved generation of CSRF tokens to increase complexity of successful CSRF attacks.
Versión 18.12.0 (2024-11-21)
- Commit 573a5FuncionalidadIntroduction of a new advanced search with additional artificial intelligence capabilities. Queries are much faster and provide better accuracy.
Versión 18.11.0 (2024-11-19)
- Commit 17636FuncionalidadIntroduction of a new simple search with additional artificial intelligence capabilities. Queries are much faster and provide better accuracy.
Versión 18.10.1 (2024-11-13)
- Commit 30cdeCorrección de erroresFixed an issue where under certain circumstances a listing of affected version numbers was not ordered properly.
Versión 18.10.0 (2024-11-08)
- Commit b7453FuncionalidadSolicitud de clienteProviding a new overview of CTI identifiers and warnings to help to determine emerging threats quickly.
Versión 18.9.7 (2024-11-06)
- Commit 2c281OptimizaciónBetter duplicate action detection and processing warning during vulnerability moderation.
Versión 18.9.6 (2024-11-05)
- Commit f5ab6OptimizaciónVulnerability entries with merged CPE data originating from NVD respect the different splitting methodologies to prevent data overloading between affected products.
Versión 18.9.5 (2024-11-04)
- Commit e6800OptimizaciónVulnerability relate views show associated CVE identifiers for better analysis capabilities.
- Commit f1d3fOptimizaciónPerformance optimization of see also data of vulnerability entries.
Versión 18.9.4 (2024-11-03)
- Commit 3227dOptimizaciónRepositioning of expiring password information hint in the user menu.
- Commit f3710OptimizaciónPerformance optimization of complex vulnerability views.
- Commit f3710OptimizaciónPerformance optimization of CTI actor views.
Versión 18.9.3 (2024-11-02)
- Commit f135fOptimizaciónPerformance optimization of vulnerability live views.
- Commit f135fOptimizaciónPerformance optimization of file integrity checks.
Versión 18.9.2 (2024-11-01)
- Commit ed9c3OptimizaciónImproved speed of collecting and displaying CTI data in vulnerability entries (requires a CTI license).
Versión 18.9.1 (2024-10-29)
- Commit 2cee7OptimizaciónCambio de APIIn API 3.71 improves the generation of Vulnerability API CTI values enabled with
cti=1
drastically.
Versión 18.9.0 (2024-10-28)
- Commit ce30bFuncionalidadCambio de APISolicitud de clienteIn API 3.70 introduces the Vulnerability API CTI fields
cti_activity_ipaddr
,cti_ioa_file
,cti_ioa_library
,cti_ioa_argument
,cti_ioa_inputvalue
,cti_ioa_pattern
,cti_ioa_networkport
,cti_ttp_attck
,cti_ttp_cwe
, andcti_ttp_capec
.
Versión 18.8.3 (2024-10-26)
- Commit c0ee8OptimizaciónVulnerability diff views now display up to 5 changes of an entry to provide better analysis possibilities.
Versión 18.8.2 (2024-10-25)
- Commit 5de35OptimizaciónVulnerability diff views always show up to the last 4 changes of an entry, no matter if it was the initial creation or succeeding updates.
Versión 18.8.1 (2024-10-24)
- Commit fad87OptimizaciónImproved wording for the temporary authentication of embargoed submits.
- Commit 20ee8Corrección de erroresFixed an issue where CVSSv2 and CVSSv3 temp scores were updated properly but the underlying vectors were updated delayed. This affected VulDB vectors only.
- Commit e7432Corrección de erroresCambio de APISolicitud de clienteFixed a very rare issue where the JSON format of the API did not list versions properly. Thanks to the user bors2908 for reporting this issue.
Versión 18.8.0 (2024-10-23)
- Commit 8ab0aFuncionalidadCambio de APISolicitud de clienteUsers are able to rotate their personal API key. This will revoke the existing API key which will then require to deploy the new API key on all clients (e.g. Splunk).
Versión 18.7.1 (2024-10-22)
- Commit 60c2aCorrección de erroresSolicitud de clienteFixed a bug where some emails were sent with wrong end-of-line characters.
Versión 18.7.0 (2024-10-18)
- Commit 4be6aFuncionalidadSolicitud de clienteThe Cyber Threat Intelligence platform does not provide details about IP addresses. A CTI license is required to get full access.
Versión 18.6.8 (2024-10-17)
- Commit 05b00OptimizaciónThe statistical view shows additional details about cyber threat intelligence (actor monitoring and exploit identification).
Versión 18.6.7 (2024-10-14)
- Commit 18e76OptimizaciónImprovement of vulnerability titles containing complex file name structures.
Versión 18.6.6 (2024-10-13)
- Commit 950f4Corrección de erroresFixed an issue where certain products were flagged as end of life even though that was not true.
Versión 18.6.5 (2024-10-12)
- Commit 08e5aCorrección de erroresFixed an issue where CVSSv4 vectors of sources without CVSS-BT data were transponding these fields from the VulDB vector data which could lead to sometimes confusing assignments.
Versión 18.6.4 (2024-10-11)
- Commit 797c4OptimizaciónCambio de APISolicitud de clienteIn API 1.19/2.43/3.69 the CSV output format contains additional CVSS scoring fields.
Versión 18.6.3 (2024-10-09)
- Commit 5ffedOptimizaciónWithin vulnerability diff views all data fields based on unix timestamps show human-readable dates as well.
Versión 18.6.2 (2024-09-27)
- Commit a7c8aOptimizaciónPrioritizing Nessus Plugin ID in vulnerability entry headers.
Versión 18.6.1 (2024-09-23)
- Commit 419a8Corrección de erroresUnder certain circumstances the calculation of community points was not correct which lead to a decrease in collected points. Thanks to the user guru for reporting this issue.
Versión 18.6.0 (2024-09-22)
- Commit 45d0dFuncionalidadLinked certain CTI views to the according knowledge base entries (e.g. actors, countries, events).
Versión 18.5.0 (2024-09-21)
- Commit c23e4OptimizaciónAdded a symbol to all views that require moderation or administrative permissions.
- Commit aac87FuncionalidadCambio de APIAdded CNA and API details to the CVE sync view which requires CNA or vulnerability moderation permissions.
Versión 18.4.13 (2024-09-20)
- Commit 5030cOptimizaciónHighlighted and tagged all main menu items that require moderation or administrative permissions.
- Commit dbbf5OptimizaciónImproved the view and capabilities of the manual vulnerability import feature available to vulnerability moderators.
Versión 18.4.12 (2024-09-19)
- Commit 7d964OptimizaciónEnhanced the wording for vulnerability coordination emails to reflect possibilities for quotes in CVE summaries better.
Versión 18.4.11 (2024-09-17)
- Commit 456c0OptimizaciónBetter evening out anomalies during CTI activity score detection to provide more accurate results.
Versión 18.4.10 (2024-09-16)
- Commit 5a06cOptimizaciónListings of vulnerability submits show the granted community points to honor better submission entries.
- Commit 854a0OptimizaciónVulnerability submit entries show assigned points for non-authenticated users as well.
Versión 18.4.9 (2024-09-15)
- Commit 1efeeOptimizaciónRe-caclulation of all points for vulnerability submits to penalize weak submission entries more (e.g. missing product details, very short descriptions).
Versión 18.4.8 (2024-09-14)
- Commit 052f0OptimizaciónListing members of the vulnerability moderation team in the vulnerability moderation view.
- Commit 89d2bOptimizaciónImproved action forms in the vulnerability moderation view.
Versión 18.4.7 (2024-09-13)
- Commit df251OptimizaciónAutomated expiration of moderation rights for admin users.
Versión 18.4.6 (2024-09-12)
- Commit af51eOptimizaciónListing members of the actor moderation team in the actor import view.
Versión 18.4.5 (2024-09-09)
- Commit cf860OptimizaciónBetter performance to import new Indicators of Compromise (IOC) for malicious actors.
Versión 18.4.4 (2024-09-04)
- Commit 6c28eOptimizaciónHistory views of vulnerability entries show the username instead of the user in the chart legend.
- Commit 6c28eOptimizaciónHistory views of vulnerability entries show shortened field names in the chart legend.
- Commit 6c28eOptimizaciónHistory views of vulnerability entries list commits and approvals with 0 confidence as well in the charts.
Versión 18.4.3 (2024-09-03)
- Commit 400a0Corrección de erroresFixed an issue where vulnerability entries sometimes mention a fix timeline even though there is no fix available.
Versión 18.4.2 (2024-08-31)
- Commit 2a249OptimizaciónImproved display of long submit titles on small displays like smart phones.
Versión 18.4.1 (2024-08-28)
- Commit ca544OptimizaciónOptimized database connection handling to improve performance and decrease ressource occupancy on the servers.
Versión 18.4.0 (2024-08-27)
- Commit 7a8cbFuncionalidadLinking to the RSS feed of the changelog in the HTML header for easier accessibility.
Versión 18.3.2 (2024-08-26)
- Commit 59fafOptimizaciónImproved the handling of vulnerability titles if many names are listed as affected vendor.
Versión 18.3.1 (2024-08-25)
- Commit 1909dOptimizaciónThe assignment of points for submits is more strict but takes details into consideration (e.g. technical details in descriptions).
Versión 18.3.0 (2024-08-24)
- Commit 0d864FuncionalidadPublic user profiles show details about their community engagement with posts and comments.
- Commit 3e979OptimizaciónThe view for personal posts history is improved and contains additional details.
Versión 18.2.0 (2024-08-23)
- Commit 6c1a6FuncionalidadPublic user profiles show details about their community engagement like recent submits and commits.
Versión 18.1.7 (2024-08-22)
- Commit 2e090OptimizaciónThe view for personal search history is improved and contains additional details.
- Commit 44262Corrección de erroresFixed an issue were large vulnerability lists were sometimes not showing special characters properly due to an encoding problem.
Versión 18.1.6 (2024-08-21)
- Commit 49395OptimizaciónVulnerability titles with unusual vulnerability classes explain those whenever possible and do not just show "unknown vulnerability" anymore.
- Commit 8db81OptimizaciónThe view for personal submits is improved and contains additional stats and more details.
- Commit d167fCorrección de erroresFixed a very rare issue where internal moderators were not able to debug search queries properly.
Versión 18.1.5 (2024-08-20)
- Commit 971a6Corrección de erroresUnder certain circumstances the CPE string for products with dedicated patch levels was not shown correctly.
Versión 18.1.4 (2024-08-17)
- Commit 39bc4OptimizaciónEditing a vulnerability entry will warn if a deprecated CWE value is selected.
Versión 18.1.3 (2024-08-11)
- Commit 15e3fOptimizaciónViews with user avatars are loaded much faster thanks to multiple query optimization techniques.
- Commit e1f4fOptimizaciónColor of duplicate submissions set to a darker orange tone to highlight that they are not very useful.
Versión 18.1.2 (2024-08-10)
- Commit 80e03Corrección de erroresFixed an issue where the recent chart on the front page was not updated properly when the service was under heavy load.
Versión 18.1.1 (2024-08-09)
- Commit b7371OptimizaciónOptimized the exploit 0day price calculation which was sometimes too low.
- Commit 1ad05OptimizaciónSubmit overviews will show users even on smaller screens.
- Commit f6871OptimizaciónThe personal avatar is shown in the side menu as well (instead of the old user icon).
Versión 18.1.0 (2024-08-08)
- Commit 91a5fFuncionalidadSolicitud de clienteCommunity users are able to create their individual avatars in their profile settings.
- Commit 91a5fFuncionalidadCommunity user avatars are shown in lists, submits, commits, and posts.
Versión 18.0.0 (2024-08-07)
- Commit 6b586FuncionalidadSolicitud de clienteAll community user submits are now public and accessible to provide full transparency.
- Commit b9313FuncionalidadA new live view shows the most recent community user submits.
Versión 17.29.0 (2024-08-06)
- Commit 4f9b9FuncionalidadIt is easier possible to change the password of existing accounts without using the password reset process.
- Commit 091b3FuncionalidadAll password changes are reported to the associated mail address.
Versión 17.28.10 (2024-08-02)
- Commit 49614OptimizaciónSolicitud de clienteOptimized queries and performance for personal My-Views (Recent, Updates, and Alerts).
Versión 17.28.9 (2024-08-01)
- Commit a64d7OptimizaciónShort vulnerability titles do also show affected file names even if large quantities of GET parameters are necessary.
Versión 17.28.8 (2024-07-28)
- Commit 697deOptimizaciónEditing vulnerability entries loads forms and dependencies much faster.
Versión 17.28.7 (2024-07-27)
- Commit a07e4OptimizaciónThe overview ob submits hides blurried items on small screens to provide better accessibility.
Versión 17.28.6 (2024-07-24)
- Commit 8bc47OptimizaciónCTI views of vulnerabilities are able to link the correct actor or campaign based on associated vulnerability names.
Versión 17.28.5 (2024-07-23)
- Commit a3456OptimizaciónVulnerability history views do not have links to new data anymore if the data value is empty (e.g. an existing data point was deleted).
Versión 17.28.4 (2024-07-20)
- Commit a7ec5OptimizaciónStatistical overviews of vulnerability submits done by users is introducing color codes to make them more readable.
Versión 17.28.3 (2024-07-18)
- Commit 0aeaaOptimizaciónIndicators for CERT vulnerabilities are more prominent and link directly to the according advisory.
- Commit e4a9dOptimizaciónDiff views for vulnerabilities now indicate the creation of an entry and the dedicated updatesets.
- Commit 04f0fCorrección de erroresCambio de APIFixed an issue where under certain circumstances paying customers with additional free API credits were shown negative values for available API credits in their user profile.
Versión 17.28.2 (2024-07-17)
- Commit df755OptimizaciónImproved CVE range search to prevent long queries.
- Commit f3eb9OptimizaciónReordered sources in vulnerability entries to better reflect availability and popularity.
Versión 17.28.1 (2024-07-16)
- Commit 0b780OptimizaciónVulnerability history views highlight rollbacks and reverts to distinguish them from regular rejects.
Versión 17.28.0 (2024-07-04)
- Commit 45cc8FuncionalidadCambio de APISolicitud de clienteIn API 2.42/3.68 introduced the fields
source_cnnvd_id
,source_cnnvd_name
,source_cnnvd_hazardlevel
,source_cnnvd_create
,source_cnnvd_publish
, andsource_cnnvd_update
.
Versión 17.27.0 (2024-07-03)
- Commit e5f8eFuncionalidadCertain views like Live Recent show a column with the responsible CNA.
Versión 17.26.1 (2024-06-30)
- Commit 6f955OptimizaciónSource monitoring parsing optimized for new CVSSv4 vectors provided by external parties (e.g. CVE, CISA).
Versión 17.26.0 (2024-06-29)
- Commit 5ccf0FuncionalidadVulnerability views for history and diff show the count of established commits.
Versión 17.25.4 (2024-06-25)
- Commit 45ee7OptimizaciónVulnerability diff views are able to show 4 instead of just 3 generations of updated collections.
- Commit 45ee7OptimizaciónVulnerability history views provide optimized field names for better layouting and clarity.
Versión 17.25.3 (2024-06-22)
- Commit 92046OptimizaciónPerformance optimization of the vulnerability database tables to make them smaller and faster to work with.
Versión 17.25.2 (2024-06-19)
- Commit b1b1aOptimizaciónImproved the structure of notification emails if a login of a new device was detected.
Versión 17.25.1 (2024-06-18)
- Commit d774aCorrección de erroresCambio de APIIn API 3.67 fixed a bug which affected IP address based CTI queries with partially missing indicators.
Versión 17.25.0 (2024-06-16)
- Commit 9b733FuncionalidadCambio de APIIn API 2.41/3.66 introduced the fields
source_0daytoday_id
,source_0daytoday_date
, andsource_0daytoday_title
.
Versión 17.24.0 (2024-06-14)
- Commit 26795FuncionalidadCambio de APIIn API 2.40/3.65 introduced the fields
source_milw0rm_id
andsource_milw0rm_unavailable
for historical purposes.
Versión 17.23.0 (2024-06-11)
- Commit 672d2FuncionalidadThe reliability level of IOCs degrades over time and is better shown with the confidence indicator.
Versión 17.22.0 (2024-06-09)
- Commit f4433FuncionalidadVulnerability lists and vulnerability entries mentioning zero-day.cz do properly link to the source entry.
Versión 17.21.0 (2024-06-08)
- Commit 2ecd8FuncionalidadVulnerability list overviews with EPSS scores show a tooltip with the associated EPSS percentile value.
- Commit 2ecd8FuncionalidadVulnerability list overviews with revoked CVE identifiers show a tooltip with the reasoning.
Versión 17.20.1 (2024-06-06)
- Commit 63c1cOptimizaciónCambio de APIThe detail view for personal API access history items is optimized to provide a better overview.
Versión 17.20.0 (2024-06-03)
- Commit 0e4d1FuncionalidadCambio de API
Versión 17.19.3 (2024-06-01)
- Commit 99084OptimizaciónPerformance optimization of database queries for vulnerability entries.
Versión 17.19.2 (2024-05-28)
- Commit a51a7OptimizaciónOptimized the language menu view to make it better readable.
Versión 17.19.1 (2024-05-27)
- Commit cdf1bOptimizaciónCommit histories of vulnerability entries flag not accepted commits and reverted commits differently.
Versión 17.19.0 (2024-05-26)
- Commit ddbe8FuncionalidadThe most important articles in the Knowledge Base are tagged to make access for new users easier.
Versión 17.18.2 (2024-05-18)
- Commit ff750OptimizaciónBehavior of vulnerability submits is shown in all user profiles of community member that have made at least one vulnerability submission.
Versión 17.18.1 (2024-05-15)
- Commit 8644aOptimizaciónLayout optimization of the relate table view for vulnerability entries.
Versión 17.18.0 (2024-05-14)
- Commit 5c336FuncionalidadIntroduction of the relate view for vulnerability entries which shows associated vulnerabilities based on affected elements.
Versión 17.17.4 (2024-05-13)
- Commit debd2OptimizaciónVulnerability entries show other associated and similar entries much better.
Versión 17.17.3 (2024-05-12)
- Commit 6e778OptimizaciónUpdating all references to align with the new structure of the upcoming CNA Rules 4.0.
Versión 17.17.2 (2024-05-10)
- Commit 66367OptimizaciónCompleting version data for known products based on historical data is improved regarding quality and performance.
Versión 17.17.1 (2024-05-08)
- Commit 8d986OptimizaciónPerformance improvement of historical version analysis provides a better user experience when accessing vulnerability enrtries.
Versión 17.17.0 (2024-05-07)
- Commit c8039FuncionalidadVulnerability entries contain the cache identifier to better associate activities to user groups.
Versión 17.16.2 (2024-05-05)
- Commit f65a0OptimizaciónVulnerability submission entries link better to the associated vulnerability entry.
- Commit f65a0OptimizaciónVulnerability submissions link to the current process step as explained in the Knowledge Base.
Versión 17.16.1 (2024-04-29)
- Commit 6c2e6OptimizaciónSolicitud de clienteThe CPE list is automcompleted based on historical data if a countermeasure version is known but affected versions are unknown.
Versión 17.16.0 (2024-04-27)
- Commit 79b0dFuncionalidadApproved vulnerability submits are also published within a new RSS feed to make analysis of new vulnerability entries much easier.
Versión 17.15.1 (2024-04-25)
- Commit 05482Corrección de erroresFixed an issue where under some rare circumstances some vulnerability entries did not show the CPE strings.
Versión 17.15.0 (2024-04-24)
- Commit 08a14FuncionalidadVulnerability entries list associated CAPEC identifierts.
Versión 17.14.0 (2024-04-23)
- Commit 07133FuncionalidadCambio de APIIn API 3.63 CTI responses may contain the field
capec
which lists all associated CAPEC items.
Versión 17.13.0 (2024-04-22)
- Commit b56acFuncionalidadCTI views containing TTP (Tactics, Techniques, Procedures) information do also list associated CAPEC (Common Attack Pattern Enumeration and Classification) data.
Versión 17.12.0 (2024-04-19)
- Commit 94d29FuncionalidadSolicitud de clienteAll fields about the CISA Known Exploited Vulnerabilities Catalog (KEV) were upgraded from virtual fields to monoblock fields. As of today changes will be reflected in updates as well.
Versión 17.11.1 (2024-04-17)
- Commit b9de6OptimizaciónWithin vulnerability detail views the link for CPE strings is optimized to provide better search results on NVD.
Versión 17.11.0 (2024-04-14)
- Commit 37e20FuncionalidadSome CTI list views show the EPSS percentile value to better assess exploiting risks for vulnerabilities.
- Commit 079a3OptimizaciónAll list views containing date or time values support tooltips which show how long ago an event happened.
Versión 17.10.0 (2024-04-13)
- Commit 13074FuncionalidadAll vulnerability list views associated with our work as a CVE Numbering Authority show the associated user submission to improve and simplify research capabilities.
- Commit 12479OptimizaciónIn some vulnerability list views the columns EPSS and CTI were swapped to show CTI values as last data point.
Versión 17.9.1 (2024-04-12)
- Commit 52022Corrección de erroresSolicitud de clienteFixed a rare issue where lists of versions were not created properly.
Versión 17.9.0 (2024-04-09)
- Commit e278eFuncionalidadIf a user made some vulnerability submissions these are shon in the personal user profile.
Versión 17.8.1 (2024-04-08)
- Commit 2dcc5OptimizaciónImproved the vulnerability submission quality analaysis system to provide fair blacklisting due to weak submissions.
Versión 17.8.0 (2024-04-03)
- Commit efec4FuncionalidadCambio de APIIn API 3.62 introduced additional detail fields for CISA Known Exploited Vulnerabilities Catalog data with the structure
exploit_kev_*
.
Versión 17.7.1 (2024-04-02)
- Commit e3042OptimizaciónSolicitud de clienteAvailability of CPE for vulnerabilities is drastically improved as they are compiled based on historical data and different sources as well.
Versión 17.7.0 (2024-04-01)
- Commit f0176FuncionalidadSolicitud de clienteVulnerability entries contain updated information by the CISA Known Exploited Vulnerabilities Catalog (KEV).
- Commit a46bbCorrección de erroresCambio de APIIn API 1.18/2.38/3.61 fixed an issue where under certain circumstances the field
software_version
did not contain the available items.
Versión 17.6.4 (2024-03-31)
- Commit 6c8e5OptimizaciónPerformance improvement of updates of the internal EPSS data storage.
Versión 17.6.3 (2024-03-30)
- Commit ae76cOptimizaciónImprovement of automated blocking of malicious users.
Versión 17.6.2 (2024-03-29)
- Commit c8646OptimizaciónImproved performance of generation and display of commit detail views.
Versión 17.6.1 (2024-03-28)
- Commit 223deOptimizaciónDisabled delayed caching for certain views to provide better data in real-time.
Versión 17.6.0 (2024-03-26)
- Commit 1003aFuncionalidadSolicitud de clienteIt is possible to see all successfully processed vulnerability submissions. This raw data helps to get a better understanding of the structure of a security issue.
- Commit b415cFuncionalidadVulnerability entries that are based on a submission by a VulDB community user list the associated submissions.
Versión 17.5.1 (2024-03-25)
- Commit 669e0OptimizaciónCambio de APIImproved CTI actors associated with a vulnerability entry is delivered via Vulnerability API which provides increased data quality.
Versión 17.5.0 (2024-03-23)
- Commit 55fecFuncionalidadPage titles contain an info button which links to the knowledge base article which is associated with a page view.
Versión 17.4.0 (2024-03-21)
- Commit 9dc56FuncionalidadCambio de APIAPI 3.60 introduced additional detail fields for CVSS data:
_basevector
and_tempvector
for all,_baseseverity
and_tempseverity
for CVSSv2 and CVSSv3,_bseverity
and_btseverity
for CVSSv4.
Versión 17.3.1 (2024-03-20)
- Commit 0cf6eCorrección de erroresUnder certain circumstances yearly statistics for CVSSv4 entries were not updating properly.
Versión 17.3.0 (2024-03-19)
- Commit c8e35FuncionalidadCambio de APISolicitud de clienteIn API 3.59 added support for CVSSv4 with the fields family
vulnerability_cvss4_vuldb_*
.
Versión 17.2.0 (2024-03-18)
- Commit b7147FuncionalidadCVSSv4 scores in vulnerability entries are clickable to learn more about the generation of such scores.
- Commit b7147FuncionalidadCVSSv4 scores do also show the reliability level of the scoring assignment like we already do for CVSSv3 scores.
Versión 17.1.0 (2024-03-17)
- Commit 026acFuncionalidadSolicitud de clienteDedicated view for CVSSv4 scores is available. All entries in our database do support CVSS-B and CVSS-BT scores.
Versión 17.0.0 (2024-03-16)
- Commit 357ceFuncionalidadSolicitud de clienteVulnerability entries display CVSSv4 scores (CVSS-B as Base and CVSS-BT as Temp). The main CVSS scores remain based on CVSSv3 until CVSSv4 is well-accepted in the industry.
Versión 16.30.6 (2024-02-23)
- Commit 49ba9OptimizaciónCTI data shown for vulnerability entries provides better identification of predictive and verified indicators.
Versión 16.30.5 (2024-02-19)
- Commit c912dOptimizaciónCambio de APISolicitud de clienteStrong performance improvement of CTI data requests within the Vulnerability API and the CTI API in general.
Versión 16.30.4 (2024-02-18)
- Commit f694cOptimizaciónVulnerability entries that show CTI data will list countries with their proper name.
- Commit 20626OptimizaciónPerformance improvement if CTI data is shown in vulnerability entries.
Versión 16.30.3 (2024-02-17)
- Commit d0970OptimizaciónComments of vulnerability entries awaiting moderation or being rejected show more details for the posting user.
Versión 16.30.2 (2024-02-16)
- Commit e616dOptimizaciónCommunity points for posts are added during the approval process.
Versión 16.30.1 (2024-02-13)
- Commit 686daOptimizaciónCVE fields during the editing of a vulnerability are protected if VulDB is the official CNA for that assignment.
Versión 16.30.0 (2024-02-07)
- Commit 9f123FuncionalidadA list of the top active community members is available. Users that enabled their privacy settings are shown as anonymous members.
- Commit 482f4FuncionalidadA longer list of the most recent users is available. Users that enabled their privacy settings are shown as anonymous members.
Versión 16.29.4 (2024-02-06)
- Commit 14d6eOptimizaciónSlight changes of community user level calculations.
- Commit f7ccaOptimizaciónIntroduction of two new community user levels Senior Expert and Superguru.
- Commit d63d6OptimizaciónDuring the setup procedure new users are asked to set their new username and password to prevent any confusion.
- Commit 2242fCorrección de erroresThe button to submit new vulnerabilities was not shown for unauthenticated users.
Versión 16.29.3 (2024-02-05)
- Commit 778ffOptimizaciónSolicitud de clienteThe calculation of user community points is much faster to provide better updates of values.
Versión 16.29.2 (2024-02-03)
- Commit 90afbOptimizaciónSolicitud de clienteIf a vulnerability submission gets accepted, the submitter will receive an email which does now contain the request to keep and maintain the attached sources to help others verify and investigate the issue.
Versión 16.29.1 (2024-01-27)
- Commit daaeeOptimizaciónA new vulnerability submit which gets merged into an existing entry as a duplicate will not give community points to the submitter.
Versión 16.29.0 (2024-01-26)
- Commit 7ddcfFuncionalidadCambio de APISolicitud de clienteIn API 3.58 the CTI responses for actors and IP addresses contain the object
cve
which lists all associated CVE identifiers.
Versión 16.28.4 (2024-01-25)
- Commit 90a4fOptimizaciónChanged the live view for recent updates to address specific needs to review changes better.
Versión 16.28.3 (2024-01-24)
- Commit dbc60OptimizaciónVulnerability entries show researchers as human-readable listings delimited by commas.
Versión 16.28.2 (2024-01-19)
- Commit 87dcaOptimizaciónCTI views with actor names are now considering special characters properly to support multi-language representation of source data.
Versión 16.28.1 (2024-01-18)
- Commit afc60OptimizaciónImproved handling of an increased amount of service requests to provide a better user experience.
Versión 16.28.0 (2024-01-17)
- Commit a7d0eFuncionalidadSolicitud de clienteThe CTI export endpoint for IP addresses lists most recent entries for the last 24 hours by default. By adding a date in the form of
YYYYmmdd
it is possible to request items for a specific day. - Commit 7f645OptimizaciónBetter identification of vulnerabilities with duplicate CVE assignments.
Versión 16.27.2 (2024-01-16)
- Commit d65c0OptimizaciónSolicitud de clienteImproved version handling of vulnerable products that use release candidates (e.g. Linux Kernel).
Versión 16.27.1 (2024-01-15)
- Commit af91bOptimizaciónSolicitud de clienteImproved version handling of vulnerable products that use characters as their minor version identifiers (e.g. OpenSSL).
Versión 16.27.0 (2024-01-12)
- Commit 124a4FuncionalidadCVEs that we reserve and publish as a CNA distinguish between identifier (finder), submitter (reporter), and commiter (analyst).
Versión 16.26.0 (2023-12-26)
- Commit c138aFuncionalidadVulnerability commits that were rejected or reverted show an indicator within the commit history for better identification.
Versión 16.25.1 (2023-12-08)
- Commit a86acOptimizaciónPerformance improvement of internal HTTP processing to handle requests more efficient and to deliver results faster.
Versión 16.25.0 (2023-11-18)
- Commit 346c5FuncionalidadVulnerability entries link to the software licenses of the affected products.
Versión 16.24.7 (2023-11-17)
- Commit 1c1faOptimizaciónIdentification of software licenses of affected products is much faster.
Versión 16.24.6 (2023-11-09)
- Commit fdcd0OptimizaciónThe user menu shows more items to provide better accessibility.
Versión 16.24.5 (2023-11-06)
- Commit 47d40OptimizaciónUpgrade of the database engine to provide better performance and ressource management.
Versión 16.24.4 (2023-10-30)
- Commit 9d609Corrección de erroresFixed an issue where certain CTI queries for hostnames were not executed in time.
Versión 16.24.3 (2023-10-27)
- Commit a64b7OptimizaciónBetter performance for CTI administrators using the backend to moderate indicators of compromise.
Versión 16.24.2 (2023-10-26)
- Commit 5be54OptimizaciónBetter and more efficient matching of version numbers in basic search requests.
Versión 16.24.1 (2023-10-21)
- Commit d0fa5OptimizaciónThe CTI actor views prefer more recent indicator of compromise to be shown if there is a limit enforced.
Versión 16.24.0 (2023-10-14)
- Commit 1c51aFuncionalidadSolicitud de clienteUsers with old passwords are warned that their passwords are going to expire. They are encouraged to define a new password.
- Commit d843dFuncionalidadOld passwords expire and require a password reset via email to enforce a high level of security.
Versión 16.23.2 (2023-10-12)
- Commit c03c5OptimizaciónBetter handling of special characters in vulnerability titles to provide improved readability.
Versión 16.23.1 (2023-10-11)
- Commit 3257fOptimizaciónImproved layout of recent CTI views for new IP addresses and actors.
Versión 16.23.0 (2023-10-04)
- Commit c7f4eFuncionalidadVulnerability entries show a dedicated list of affected version numbers as well.
Versión 16.22.10 (2023-09-23)
- Commit e7d66OptimizaciónBetter and faster processing of mail alerts to keep users up-to-date about their affected products.
Versión 16.22.9 (2023-09-20)
- Commit 2b9d4OptimizaciónImprovement of flooding and denial of service protection to guarantee an even more reliable service.
Versión 16.22.8 (2023-09-17)
- Commit a91bfOptimizaciónThe fields
software_website_vendor
andsoftware_website_product
are now auto-completed much better to provide improved data quality for less popular entries.
Versión 16.22.7 (2023-09-15)
- Commit eb2dfCorrección de erroresSolicitud de clienteFixed an issue where duplicates in CPE lists were creating odd JSON responses.
Versión 16.22.6 (2023-08-31)
- Commit 311c6Corrección de erroresSolicitud de clienteFixed an issue where exported CPE lists (JSON) were shown as objects instead of arrays. Reported by Dave Thornley.
Versión 16.22.5 (2023-08-29)
- Commit 914caOptimizaciónImproved handling of malicious requests to guarantee availability and responsiveness for our customers.
Versión 16.22.4 (2023-08-09)
- Commit 1e7dcCorrección de erroresSums and average data of yearly views were not calculated correctly if there was a month with zero data.
Versión 16.22.3 (2023-08-03)
- Commit b7490OptimizaciónVulnerability data storage of
source_nessus_type
is much more efficient which increases performance as well.
Versión 16.22.2 (2023-08-02)
- Commit 65890OptimizaciónBetter handling of obsolete links to discontinued vulnerability sources.
Versión 16.22.1 (2023-08-01)
- Commit 4423bOptimizaciónVulnerability data storage of
source_vulnerabilitycenter_severity
is much more efficient which increases performance as well.
Versión 16.22.0 (2023-07-31)
- Commit 09088FuncionalidadSolicitud de clienteChanges to the personal filter are now considered critical and as such they will inform the user about the edit via email.
Versión 16.21.7 (2023-07-30)
- Commit d6b1eOptimizaciónVulnerability data storage of
source_nessus_risk
andsource_secunia_risk
is much more efficient which increases performance as well.
Versión 16.21.6 (2023-07-29)
- Commit 3a72bCorrección de erroresA display bug showed merged vulnerability submissions as rejected instead of merged into the existing entry. Thanks to Calvin Star for making us aware of this issue.
Versión 16.21.5 (2023-07-26)
- Commit b552bCorrección de erroresIn CTI views the list of references was not revealed entirely even if the user had a proper license.
Versión 16.21.4 (2023-07-24)
- Commit 520d2OptimizaciónBetter listing of sources associated with CTI actor activity analysis.
Versión 16.21.3 (2023-07-19)
- Commit 707b0OptimizaciónBetter IP address association for verified IOC (Indicators of Compromise). This increases the accuracy of CTI analysis of vulnerability entries.
Versión 16.21.2 (2023-07-17)
- Commit 71759OptimizaciónThe submission form for new vulnerabilities allows URLs for exploits as well.
Versión 16.21.1 (2023-07-16)
- Commit ab061OptimizaciónVulnerability exports do contain duplicate CVEs that got assigned.
Versión 16.21.0 (2023-07-05)
- Commit 0c32cFuncionalidadSometimes CNAs assign duplicate CVEs for the same vulnerability. We do now show such duplicates to help to better understand connections between CVE entries.
Versión 16.20.3 (2023-06-27)
- Commit 6ee4cOptimizaciónBetter identification of vulnerability entries which affect products that are end-of-life. Version-specific association is now possible.
Versión 16.20.2 (2023-06-26)
- Commit bb031OptimizaciónImprovement of CTI analysis for vulnerabilities that spike within short timeframes (hours and days). The data is loaded, analyzed, and presented much faster.
Versión 16.21.2 (2023-07-17)
- Commit 39c9aOptimizaciónOptimization of monoblock capabilities to handle vulnerability data.
Versión 16.20.0 (2023-06-13)
- Commit e7287FuncionalidadThere is also a list of most recent IP addresses added as IOCs available for paying users.
Versión 16.19.0 (2023-06-10)
- Commit e6e0dFuncionalidadA list of the most recent actor IOCs is available for paying users.
Versión 16.18.1 (2023-06-03)
- Commit e3b45OptimizaciónDetection of commit collisions during editing of vulnerability data. Entries will be locked until an edit has been finalized.
Versión 16.18.0 (2023-05-26)
- Commit b9b95FuncionalidadActor analysis adds links to malware samples to support in-depth analysis.
Versión 16.17.2 (2023-05-23)
- Commit b7248OptimizaciónImproved use of vulnerability names for better data matching on the web service.
Versión 16.17.1 (2023-05-17)
- Commit 6f54eOptimizaciónUpgraded database servers to improve performance during peak times.
Versión 16.17.0 (2023-05-13)
- Commit b7e2dFuncionalidadCambio de APISolicitud de clienteIn API 2.37/3.57 introduction of the field
source_cve_duplicate
to indicate whether a duplicate CVE has been assigned to an entry.
Versión 16.16.4 (2023-05-11)
- Commit 0fa94Corrección de erroresFixed a minor view issue with Indicator of Compromise (IOC) tables that list IP ranges.
Versión 16.16.3 (2023-05-10)
- Commit 8f483Corrección de erroresFixed an issue where sync of researcher data with the CVE stream did not happen properly under certain circumstances.
Versión 16.16.2 (2023-05-05)
- Commit ba5c5OptimizaciónImprovement of timeseries handling which contain CTI activity scores and exploit today prices.
Versión 16.16.1 (2023-05-03)
- Commit bf769OptimizaciónImproved intelligent matching of vendor and product definitions in all search queries, especially in multi-line fields.
Versión 16.16.0 (2023-04-29)
- Commit eaaf4FuncionalidadDue to our intensive involvement as a CNA (CVE Numbering Authority) we have extended the main menu to access CVE details that are maintained by us very quickly.
Versión 16.15.1 (2023-04-22)
- Commit e45eaOptimizaciónThe discussion possibility for vulnerabilities mentions that they are intended for public exchange and not fort support queries. Use the contact form instead to approach our support team.
Versión 16.15.0 (2023-04-21)
- Commit f33dfFuncionalidadThe CTI views for actors and IP addresses show the date of the first identification of Indicators of Compromise.
Versión 16.14.1 (2023-04-18)
- Commit f5a6cOptimizaciónImprovement of the field
advisory_type
to indicate where a vulnerability disclosure is originating from. - Commit 9cf62Corrección de erroresCambio de APIFixed an issue where under certain circumstances the field
advisory_type
was not shown in an API response.
Versión 16.14.0 (2023-04-17)
- Commit a040aFuncionalidadAdded the setting to enable count information for certain views in the site title. This helps to determine how many items are listed on a page.
- Commit 2ef13Corrección de erroresFixed an issue in the overview of personal posts which did not show the name of a vulnerability entry properly.
Versión 16.13.2 (2023-04-16)
- Commit 9a6a2OptimizaciónChanged the HTML title of vulnerability entries to use a colon instead of a pipe symbol as delimiter. Please update your parsers if you are relying on this data structure.
Versión 16.13.1 (2023-04-15)
- Commit 22190OptimizaciónPerformance optimization for all views that list our entries as a CVE Numbering Authority.
- Commit 853b1OptimizaciónAccess to all entries that are maintained by us as the responsible CVE Numbering Authority are accessible without any restrictions for all users.
Versión 16.13.0 (2023-04-09)
- Commit 792c6FuncionalidadAccess to our activities as a CVE Numbering Authority possible by year. This has become mandatory due to the enormous amount of CVEs that we are handling.
- Commit a1d8bOptimizaciónRecent CNA entries do now redirect to the current year.
Versión 16.12.1 (2023-04-02)
- Commit 2085fOptimizaciónImproved the speed and accuracy of the display of recent vulnerabilities on the front page.
Versión 16.12.0 (2023-04-01)
- Commit 67624FuncionalidadCambio de APIIn API 3.56 sources that are not available anymore are shown with the
unavailable
tag which contains the reason. This helps to determine defunct companies and dead links. - Commit b5b18FuncionalidadVulnerability entries indicate broken external links to help determine defunct companies and dead links.
Versión 16.11.1 (2023-03-31)
- Commit fd85cCorrección de erroresFixed an issue where reverse lookups of CPE strings was not matching properly.
Versión 16.11.0 (2023-03-23)
- Commit 7a109FuncionalidadCambio de APIIn API 2.36/3.55 introduction of the field
source_cve_duplicateof
to indicate CVE assignments which are potential duplicates of existing CVE assignments.
Versión 16.10.3 (2023-03-17)
- Commit 05831OptimizaciónOptimized the speed to update community points earned by users for submissions of new vulnerability entries.
Versión 16.10.2 (2023-03-16)
- Commit 7b3a5OptimizaciónImproved accuracy of indicators for vulnerability entries of managed serviced that cannot get a CVE according to current CAN rules.
Versión 16.10.1 (2023-03-13)
- Commit ab8a8OptimizaciónSolicitud de clienteHandling of CPE values of vulnerabilities was optimized to provide better accuracy of data.
Versión 16.10.0 (2023-03-11)
- Commit c639dFuncionalidadSolicitud de clienteComments of vulnerability entries will show official replies by our community team to help visitors to understand details and inner workings of our processes.
- Commit 13ff7FuncionalidadHovering over the time indicator of comments will show the exact time of the submission.
Versión 16.9.3 (2023-03-09)
- Commit f3d56OptimizaciónPerformance improvement of EPSS (Exploit Prediction Scoring System) value handling.
Versión 16.9.2 (2023-02-19)
- Commit 72d23OptimizaciónReferences lists use the general naming convention for VulDB entries as well.
Versión 16.9.1 (2023-02-16)
- Commit 636ccOptimizaciónMuch better performance of the service by optimizing the partitioning of data. Especially if there are many tasks handled at the same time.
Versión 16.9.0 (2023-02-15)
- Commit dc811FuncionalidadSwitches VulDB CVSSv3 scores from 3.0 to 3.1 to adopt latest version of the industry standard.
Versión 16.8.0 (2023-02-13)
- Commit 8a926FuncionalidadCambio de APISolicitud de clienteIn API 3.54 the field
software_managedservice
is introduced to indicate products that are managed services and therefore not maintained by users.
Versión 16.7.0 (2023-02-11)
- Commit 0ceebFuncionalidadCambio de APISolicitud de clienteIn API 1.17/2.35/3.53 the field
software_rollingrelease
is introduced to indicate whether the product is not using version numbering but establishing a rolling release instead. - Commit 27319FuncionalidadCambio de APIThe changelog does now flag changes to the API as such. This helps customers to identify changes that might require their attention regarding automated processing of data.
Versión 16.6.12 (2023-02-03)
- Commit 1c4caOptimizaciónCambio de APISolicitud de clienteInvalid URL requests to the API are not always redirected to prevent inefficient usage of the API.
Versión 16.6.11 (2023-01-28)
- Commit 9e571Corrección de erroresCambio de APISolicitud de clienteFixed an issue in the API where request for
entry_timstampe_change
for older entries did not return the desired amount of items.
Versión 16.6.10 (2023-01-23)
- Commit 8a095OptimizaciónAdditional details available about default licenses by vendors.
Versión 16.6.9 (2023-01-22)
- Commit 05f5cOptimizaciónImprovement of the Google Hacking view which provides a wide variety of Google Dorks.
- Commit 32026OptimizaciónFaster and smarter processing of cache data which improves the overall performance of the service drastically.
Versión 16.6.8 (2023-01-21)
- Commit 830d3OptimizaciónInvalid URL requests to the service are usually redirected, to point the user to the correct URL. This is now approached more consistantly.
Versión 16.6.7 (2023-01-20)
- Commit e6e23OptimizaciónPerformance optimization to increase responsibility for a wide variety of views.
Versión 16.6.6 (2023-01-12)
- Commit 6c542OptimizaciónImprovement of search by purl statements. Better matching of products and versions possible.
Versión 16.6.5 (2023-01-11)
- Commit 7c9bdOptimizaciónBetter indicator for disputed vulnerability entries that are handled by our CNA team.
Versión 16.6.4 (2023-01-10)
- Commit c8bc3Corrección de erroresFixed an issue where emails confirming the moderation of a vulnerability submission mention the wrong submission ID in the mail subject.
Versión 16.6.3 (2023-01-09)
- Commit 9b662OptimizaciónBetter handling of user sessions, especially if there is a lot of activities on the service.
Versión 16.6.2 (2023-01-07)
- Commit 5e9a7OptimizaciónIntroduction of a simple way for moderators to postpone processing of queued vulnerability items.
- Commit cfb9aOptimizaciónMuch better performance for moderators to import new vulnerabilities.
Versión 16.6.1 (2023-01-04)
- Commit cd64fOptimizaciónImprovement of priority indicators for vulnerability queue handling by moderators.
Versión 16.6.0 (2023-01-03)
- Commit 02196FuncionalidadNew queue handling of identifier vulnerabilities to improve quality and speed of processing by moderators.
Versión 16.5.4 (2023-01-02)
- Commit 9a5e1OptimizaciónExtended display of multiline quotes of vulnerabilities for software, advisories, vulnerabilities, exploits, and countermeasures.
Versión 16.5.3 (2022-12-21)
- Commit 89dfeCorrección de erroresIn very rare cases the derivative identification of vulnerability classes was not working.
Versión 16.5.2 (2022-12-18)
- Commit 6924dOptimización
Versión 16.5.1 (2022-12-17)
- Commit a0204OptimizaciónAll update views show duplicates and false-positives accordingly.
Versión 16.5.0 (2022-12-16)
- Commit 91e21FuncionalidadCambio de APISolicitud de cliente
Versión 16.4.6 (2022-12-12)
- Commit 1b860Optimización
Versión 16.4.5 (2022-12-10)
- Commit 47588OptimizaciónCambio de APIMore performance improvement of the API for timeranges like
advisory_date_start
,entry_timestamp_create_start
,entry_timestamp_change_start
, andentry_timestamp_all_start
.
Versión 16.4.4 (2022-12-08)
- Commit fc381OptimizaciónCambio de APISolicitud de clienteIn API 3.52 performance optimization of certain queries requesting timeranges like
advisory_date_start
,entry_timestamp_create_start
,entry_timestamp_change_start
, andentry_timestamp_all_start
.
Versión 16.4.3 (2022-12-07)
- Commit dba58OptimizaciónImproved handling of duplicate vulnerability entries. These are processed much faster, flagged as duplicates or even hidden under certain circumstances.
Versión 16.4.2 (2022-12-05)
- Commit 67c94OptimizaciónPerformance optimization due to intelligent caching of cyber threat intelligence views like countries, sectors, and actors.
Versión 16.4.1 (2022-12-04)
- Commit 8dc47OptimizaciónAccess to cyber threat intelligence information which is not unlocked yet will show a proper amount of demo data to help to understand features, coverage, and possibilities.
Versión 16.4.0 (2022-12-03)
- Commit 12800FuncionalidadSolicitud de clienteThe Cyber Threat Intelligence platform does now provide a new view. The sector view helps to understand the emerging, current, and future threats for specific economic sectors.
Versión 16.3.4 (2022-11-26)
- Commit dae79OptimizaciónImproved extended CPE dictionary generation. By dropping attributes that are not necessary the file generation becomes faster and the file becomes smaller.
Versión 16.3.3 (2022-11-25)
- Commit 726b4OptimizaciónHardware upgrade for better memory and processing handling.
Versión 16.3.2 (2022-11-22)
- Commit 21d9bOptimizaciónImproved coverage and flagging of software products known to be end-of-life.
Versión 16.3.1 (2022-11-21)
- Commit 23f71OptimizaciónBetter handling of vulnerability entries flagges as false-positives or revoked data parts. Summaries reflect the status better and overviews tag them more prominent.
Versión 16.3.0 (2022-11-18)
- Commit 085b7FuncionalidadAdditional links to the internal knowledge base and external sources available in vulnerability summaries and descriptions. This makes research a lot faster, easier, and more comfortable.
Versión 16.2.0 (2022-11-08)
- Commit ba2e4FuncionalidadCambio de APISolicitud de cliente
Versión 16.1.1 (2022-11-07)
- Commit 21a87Corrección de erroresSolicitud de clienteFixed a bug where some searches for CPE strings were not working properly.
Versión 16.1.0 (2022-10-31)
- Commit 62218FuncionalidadCambio de APISolicitud de cliente
Versión 16.0.3 (2022-10-20)
- Commit 698a4Corrección de erroresFixed an issue on the front page where under certain circumstances the exploit price overview was not refreshed properly.
Versión 16.0.2 (2022-10-19)
- Commit df7bfCorrección de erroresVulnerability entries without the definition of
software_version
but with a definition ofcountermeasure_upgrade_version
will show this information properly in the document title.
Versión 16.0.1 (2022-10-18)
- Commit f18eeOptimizaciónVulnerability entries list associated changesets with date and count of changes. This makes it easier to understand the lifecycle of an entry.
Versión 16.0.0 (2022-10-15)
- Commit 30f76FuncionalidadSolicitud de clienteThe vulnerability data team is taking advantage of the new source monitoring modules. An advanced artificial intelligence enumerates different sources to determine new vulnerabilities or additional details. If such are found, they are added to the submission queue and will be reviewed by the moderation team. This will increase coverage, processing speed, and data quality of vulnerability entries drastically.
Versión 15.5.6 (2022-10-10)
- Commit 6ab11Optimización
Versión 15.5.5 (2022-10-07)
- Commit fb472OptimizaciónOptimization of the user menu as shown on devices with smaller screens.
Versión 15.5.4 (2022-10-06)
- Commit 78b19OptimizaciónSites showing search results with a new search form will set the focus on the form field for faster processing of new search queries.
Versión 15.5.3 (2022-09-30)
- Commit 53399Corrección de erroresCambio de APISolicitud de clienteIn API 3.48 fixed an issue for the
field
parameter where only old notations ofvulnerability_cvss3_basevector_vuldb
andvulnerability_cvss3_tempvector_vuldb
instead also ofvulnerability_cvss3_vuldb_basevector
andvulnerability_cvss3_vuldb_tempvector
were supported. - Commit 4995fOptimizaciónCambio de APIIn API 1.16/2.34/3.49 a more graceful handling of too many definitions in the
fields
parameter got established. If there are too many fields defined, only the first ones will be used and the others silently ignored.
Versión 15.5.2 (2022-09-28)
- Commit aaebcOptimizaciónBetter handling of data uncertainty while generating stats and charts to improve result accuracy.
Versión 15.5.1 (2022-09-25)
- Commit 3985dOptimizaciónCambio de APIIn API 1.15/2.33/3.47 additional data analysis is able to provide derivative Google Hacking strings shown in the field
exploit_googlehack
. - Commit abeb0OptimizaciónAdditional data analysis is also able to provide derivative Google Hacking strings in vulnerability summaries, descriptions, and detail listings.
Versión 15.5.0 (2022-09-23)
- Commit 7fe8bFuncionalidadSolicitud de clienteWe have introduced a Google Hacking Database containing exclusive dorks.
Versión 15.4.1 (2022-09-20)
- Commit c9710OptimizaciónImproved the declaration of impacts within description and summaries of vulnerabilities.
Versión 15.4.0 (2022-09-19)
- Commit fdc84FuncionalidadSolicitud de clienteThe custom CTI analysis allows filter by countries to improve geopolitical analysis capabilities.
Versión 15.3.11 (2022-09-18)
- Commit 43a2cOptimizaciónPerformance optimization of statistical data of user contributions.
Versión 15.3.10 (2022-09-15)
- Commit 8028cOptimizaciónBetter memory handling of the service to improve responsiveness of queries and views.
Versión 15.3.9 (2022-09-14)
- Commit 0e2c2OptimizaciónImprovement of countermeasure handling of vulnerabilities to save space, gain better performance, and faster processing of entries.
Versión 15.3.8 (2022-09-11)
- Commit b4aecCorrección de erroresFixed an issue where empty CWE data was shown in vulnerability entries. This was just an interface error on the web frontend.
Versión 15.3.7 (2022-09-08)
- Commit e5ba5Corrección de erroresSolicitud de clienteFixed an issue with the RSS feeds where certain special characters in the title element lead to XML validation errors. Reported by Calvin Mende.
Versión 15.3.6 (2022-09-07)
- Commit 3c399Corrección de erroresSolicitud de clienteFixed an issue where certain product names generated an invalid XML CPE dictionary. Reported by user RobinDefenced
Versión 15.3.5 (2022-09-06)
- Commit 144c0Corrección de erroresCambio de APISolicitud de clienteFixed an issue where certain search requests via web and API were not executed at all. Reported by user showmax
Versión 15.3.4 (2022-09-05)
- Commit 61068OptimizaciónAnother performance improvement of search queries. Lookups for functions and arguments are now multiple times faster as well.
Versión 15.3.3 (2022-09-02)
- Commit 6ae56OptimizaciónSolicitud de clientePerformance improvement of search queries. Especially queries for URLs are now multiple times faster.
Versión 15.3.2 (2022-08-30)
- Commit 0acc3OptimizaciónBetter performance and accuracy of parsing of vulnerability data during moderation process.
Versión 15.3.1 (2022-08-29)
- Commit 7d293OptimizaciónBetter teasing of Cyber Threat Intelligence information for free users.
Versión 15.3.0 (2022-08-27)
- Commit 13bc6FuncionalidadSolicitud de clienteVulnerability entries show multiple CWE if available. In this case they are listed in descending order of accuracy.
Versión 15.2.3 (2022-08-19)
- Commit 87315OptimizaciónVulnerability entries flagged as false-positive are shown with this tag in lists (e.g. overview, search).
Versión 15.2.2 (2022-08-17)
- Commit 4bf82OptimizaciónAnother improvement of entropy of the CSRF token generation for critical forms.
Versión 15.2.1 (2022-08-14)
- Commit 6d5faOptimizaciónCambio de APIIn API 3.46 he virtual fields
advisory_reportconfidence
,exploit_exploitability
,countermeasure_remediationlevel
provide better data accurary to improve data quality.
Versión 15.2.0 (2022-08-11)
- Commit c5cd8FuncionalidadCambio de APISolicitud de clienteIn API 3.45 the Vulnerability API is able to show additional CTI information by enabling
cti=1
within requests. This is possible for free accounts, commercial accounts and enterprise accounts with the CTI option enabled. The real-time availability of the data introduces some increased round trip times for such queries.
Versión 15.1.2 (2022-08-09)
- Commit 0d06aOptimizaciónBetter matching of natural search when it comes to short words which causes less false-negatives.
Versión 15.1.1 (2022-07-12)
- Commit b168aOptimizaciónFixed an issue where vulnerabilities with product versions ending with
.x
wildcards were handled inapprorpiately.
Versión 15.1.0 (2022-07-08)
- Commit 5134eFuncionalidadSolicitud de clienteCertain views contain a column listing the latest EPSS (Exploit Prediction Scoring System) values for vulnerabilities.
Versión 15.0.0 (2022-07-05)
- Commit c13baFuncionalidadCambio de APISolicitud de cliente
Versión 14.27.1 (2022-06-29)
- Commit 093a3OptimizaciónListing of important identifiers of vulnerabilities were optimized to provide better searchability.
Versión 14.27.0 (2022-06-24)
- Commit ab1f7FuncionalidadEnglish vulnerability descriptions explain the vulnerability classes according to the CWE definitions.
Versión 14.26.6 (2022-06-23)
- Commit 0761dOptimizaciónImproved the support for less popular CWE classes to provide better identification capabilities of exotic vulnerabilities.
Versión 14.26.5 (2022-06-16)
- Commit 4a400OptimizaciónFaster synchronization of EPSS (Exploit Prediction Scoring System) data to increase confidence of predictions.
Versión 14.26.4 (2022-06-11)
- Commit e54dfOptimizaciónImproved version listing for releases using letters in version numbering (e.g. OpenSSL).
Versión 14.26.3 (2022-06-10)
- Commit 986a8OptimizaciónBetter accuracy of product requests in the Monoblock.
Versión 14.26.2 (2022-06-07)
- Commit 7045aOptimizaciónOptimized the purchase and upgrade experience for users with better guidance and accessibility.
Versión 14.26.1 (2022-06-02)
- Commit af297OptimizaciónEmails sent for custom mail alerts do now contain the CVE of matching entries to provide better overview and accessibility.
Versión 14.26.0 (2022-06-01)
- Commit 6b2ffFuncionalidadSolicitud de clienteIntroduction of the Exploit Prediction Scoring System which is able to predict chances of successful exploitation of vulnerabilities. Official EPSS data is kept in sync and shown in the vulnerability details.
- Commit 51aabFuncionalidadCambio de APISolicitud de clienteIn API 2.32/3.43 introduced the fields
exploit_epss_score
andexploit_epss_percentile
which provide live data of EPSS (Exploit Prediction Scoring System) to predict chances of successful exploitation.
Versión 14.25.10 (2022-05-31)
- Commit 6436aCorrección de erroresFixed an issue where certain links were not correctly used in the vulnerability summaries for authenticated users. Reported by Andrea Hauser
Versión 14.25.9 (2022-05-25)
- Commit 57b2aOptimizaciónSolicitud de clienteBetter integration of search possibilities in the site header on mobile phones.
Versión 14.25.8 (2022-05-23)
- Commit 01046Corrección de erroresCambio de APISolicitud de clienteIn API 3.41 accessing the field
software_cpe23
is possible again. Other major releases of the API were not affected. Reported by Stefan Sander.
Versión 14.25.7 (2022-05-15)
- Commit ed7b9Corrección de erroresSending certain host requests introduced the possibility for unexpected redirects. Reported by Pankaj lakshkar
Versión 14.25.6 (2022-05-12)
- Commit b8eb9OptimizaciónImproved search intelligence to match CWE and CVE faster and with more accuracy.
Versión 14.25.5 (2022-05-11)
- Commit 84bd4OptimizaciónAll CTI activities are available in a dedicated section. Existing links redirect to the new location.
Versión 14.25.4 (2022-05-10)
- Commit 0098aCorrección de erroresSolicitud de clienteFixed an error message which was shown under certain circumstances for recent entries.
Versión 14.25.3 (2022-05-06)
- Commit e8a31OptimizaciónThe latest videos shown on the frontpage are updated faster to provide access to the latest entries.
- Commit dfe4eCorrección de erroresCambio de APISolicitud de clienteIn API 1.14/2.31/3.41 fixed an issue where requests with
entry_timestamp_create
did include entries that matchedentry_timestamp_change
instead. Reported by user peeradon.no
Versión 14.25.2 (2022-05-04)
- Commit 52eb6OptimizaciónThe personal view of My Alert shows matching entries ranging back 90 days.
Versión 14.25.1 (2022-05-03)
- Commit 87e2dOptimizaciónBetter performance for creating the RSS feed of updated entries.
Versión 14.25.0 (2022-05-02)
- Commit 6b388FuncionalidadAvailability of a dedicated RSS feed for changelog entries to monitor changes easily.
Versión 14.24.1 (2022-04-29)
- Commit c0290OptimizaciónAligned icons and sidemenu in the CNA section to provide better accessibility.
Versión 14.24.0 (2022-04-27)
- Commit 91fceFuncionalidadCambio de APISolicitud de clienteIn API 3.40 using the parameter
format=csv
makes it possible to output vulnerability data as CSV. Not all request types are supported, not all fields are included, and API header information is not part of the output.
Versión 14.23.1 (2022-04-25)
- Commit c49ecOptimizaciónImproved the actor and compaign association of the CTI module. Interlinking data is better and provides results with increased accuracy.
- Commit 30e2cOptimizaciónCTI indicators shown are either verified or predictive and shown with the associated tag.
Versión 14.23.0 (2022-04-24)
- Commit 71333FuncionalidadThe country overview shows additional details like covered languages, TTP, IOA, and activities.
Versión 14.22.0 (2022-04-21)
- Commit c3eaeFuncionalidadThe user menu contains additional items to quickly access your user profile, activity settings, and alerting capabilities.
- Commit 3cc50OptimizaciónAligned the text color of lists in databoxes to the overall style.
Versión 14.21.2 (2022-04-20)
- Commit 1ca57OptimizaciónSolicitud de clienteAlerts sent via email use asterisks to prevent Microsoft Outlook from deleting newlines.
- Commit 1ca57OptimizaciónAlerts sent via email refer to entries with the new format VDB-1234 instead of the old format ID 1234.
- Commit 00701OptimizaciónSwitched symbols used in the community activity stream from emoji to a dedicated font to provide better reliability on different platforms.
Versión 14.21.1 (2022-04-19)
- Commit 90187OptimizaciónCertain elements on the frontpage use additional icons to visualize data sources.
Versión 14.21.0 (2022-04-16)
- Commit 0063cFuncionalidadCambio de APIIn API 3.39 enabled auto-complete feature for
software_type
even if the field is not yet defined in the monoblock.
Versión 14.20.9 (2022-04-14)
- Commit 38c8fCorrección de erroresSending multiple information mails if a duplicate signup happens is prevented. Reported by Rupali Jain
Versión 14.20.8 (2022-04-13)
- Commit 13b46Corrección de erroresFixed a rare bug affecting certain product views that prevented the list from loading. Reported by user mael
Versión 14.20.7 (2022-04-11)
- Commit 766deOptimizaciónPerformance optimization of certain filtered views used by the CNA team.
- Commit 45617Corrección de erroresSolicitud de clienteThe autocomplete feature for versioning of certain products was not able to finalize the output. Reported by user lywand
Versión 14.20.6 (2022-04-09)
- Commit 99f6cOptimizaciónLayout of current utilization data provides better readability.
Versión 14.20.5 (2022-04-08)
- Commit 14036OptimizaciónSolicitud de clienteRegistration does allow mail addresses with rather long top-level-domains.
Versión 14.20.4 (2022-04-01)
- Commit 8e9e6OptimizaciónThe overview of monitored actors displays the number of collected IOC (Indicators of Compromise), TTP (Tactics, Techniques, Procedures), IOA (Indicators of Attack), campaigns and external references.
Versión 14.20.3 (2022-03-29)
- Commit 45456OptimizaciónNew overview of actors shows the amount of available indicators and used sources. The list is also sortable for better viewing.
Versión 14.20.2 (2022-03-28)
- Commit fdbebOptimizaciónUpdate of icons used in menus and on other parts of the service.
Versión 14.20.1 (2022-03-26)
- Commit 30ff5OptimizaciónSolicitud de clienteSubmissions of new vulnerabilities will automatically handle a CVE assignment and inform the submitter about the CNA decision (assigned, denied or pending).
- Commit 30ff5OptimizaciónSubmissions of new vulnerabilities will request an external advisory url for further validation of the issue.
Versión 14.20.0 (2022-03-21)
- Commit 14dd6FuncionalidadAn overview of all RSS feeds with all available languages is listed.
Versión 14.19.0 (2022-03-20)
- Commit d86a3FuncionalidadAvailability of all RSS feeds in all available languages. This is true for of recent, updates, Twitter, and customer streams.
- Commit 85b71FuncionalidadRSS feeds always show the CVE or another important identifier in the title for better searching capabilities.
- Commit 95b49OptimizaciónThe
language
element of RSS feeds reflects the used content language.
Versión 14.18.4 (2022-03-19)
- Commit 6bc0cOptimizaciónOptimized performance by using specific features and configuration settings in PHP8.
- Commit 3ce86Corrección de erroresCambio de APIFixed a race condition where consecutive API requests might not have been added to the personal API history properly.
Versión 14.18.3 (2022-03-15)
- Commit c2804OptimizaciónScrollbars of elements provide better styling to improve user experience, especially on smaller screens.
Versión 14.18.2 (2022-03-14)
- Commit 0893aOptimizaciónImproved intelligent matching of vendor and product definitions in simple searches.
Versión 14.18.1 (2022-03-10)
- Commit 25badOptimizaciónImproved layout of the changelog items to provide better visibility.
- Commit ed2beOptimizaciónTimelines in vulnerability entries do always link to countermeasures if patch or upgrade URLs are known.
- Commit 91b01Corrección de erroresSome links to countermeasures were clickable but still threw a 404 even though the requested resources were available. Reported by user mael
Versión 14.18.0 (2022-03-09)
- Commit 72d69FuncionalidadItems listed in legends of charts are clickable to allow quick drilldowns.
- Commit a7e66Corrección de erroresCertain pie charts did not reflect the correct number of known matches.
Versión 14.17.5 (2022-03-07)
- Commit c162cOptimizaciónA better layout helps vulnerability moderators to identify priority entries in the submission queue.
Versión 14.17.4 (2022-03-01)
- Commit 23a47Corrección de erroresIn certain views the generation of timeline graphs was not possible if the advisory_date of an entry has been changed to another year.
Versión 14.17.3 (2022-02-28)
- Commit 01eaeCorrección de erroresFixed an issue where empty CVSSv3 scores were shown with a value of 0.0.
Versión 14.17.2 (2022-02-27)
- Commit c8b23OptimizaciónPerformance optimization of list views which contain CVSSv3 Meta Scores.
- Commit 48019Corrección de erroresUnder certain circumstances an existing remediation level based on the field
countermeasure_remediationlevel
was not shown correctly.
Versión 14.17.1 (2022-02-25)
- Commit 4882dOptimizaciónIcon text in the submenu allows hyphenation to optimize the view on narrow screens.
- Commit 60d49OptimizaciónCharts for timespans are optimized to zoom into the timeframe whenever possible and useful.
Versión 14.17.0 (2022-02-23)
- Commit f8d99FuncionalidadThe applicable copyright license is shown in the footer of the page.
Versión 14.16.1 (2022-02-22)
- Commit c6483OptimizaciónTable listings with narrow columns provide better spacing to fit the content.
Versión 14.16.0 (2022-02-21)
- Commit 93389FuncionalidadSolicitud de clienteThe CTI views do allow for drilldown of IP addresses as IoC (Indicator of Compromise).
- Commit 9e1e2Corrección de erroresSolicitud de clienteListing of version numbers ranging back to 0.x might have contained version 0.0. This is usually wrong and got fixed. Thanks to Cheek Yang of xFusion Digital Technologies for making us aware of this issue.
Versión 14.15.1 (2022-02-20)
- Commit 24c78OptimizaciónCertain CTI views which have complex hostnames as IoC (Indicator of Compromise) allow much faster analysis.
Versión 14.15.0 (2022-02-18)
- Commit 4da51FuncionalidadSolicitud de clienteCustom CTI analysis contains IOC (Indicator of Compromise), TTP (Tactics, Techniques, Procedures) and IOA (Indicator of Attack) as well.
Versión 14.14.0 (2022-02-17)
- Commit 52552FuncionalidadSolicitud de clienteThe CTI view for countries lists popular TTP (Tactics, Techniques, Procedures) and IOA (Indicator of Attack) as well.
Versión 14.13.4 (2022-02-09)
- Commit 291bfOptimizaciónSearch requests for CVE identifiers detects mismatching dashes (e.g. en and em) and corrects them automatically.
Versión 14.13.3 (2022-02-08)
- Commit f7d1bOptimizaciónPerformance optimization of data analysis of APT actors.
- Commit 7c6d0OptimizaciónImprovement of CTI actor report generator for GitHub repository.
Versión 14.13.2 (2022-01-31)
- Commit b0bffOptimizaciónActivity charts provide data with better accuracy.
- Commit b0bffOptimizaciónActivity charts have a better performance during generation.
Versión 14.13.1 (2022-01-30)
- Commit f1aa5OptimizaciónPerformance optimization of APT actor association charts during generation.
Versión 14.13.0 (2022-01-28)
- Commit 6defcFuncionalidadCambio de APIIn API 2.30/3.38 multiple fields to reflect our capabilities as a CNA to assign and disclose CVE entries are introduced:
cna_responsible
,cna_contact_date
,cna_response_date
,cna_response_summary
,cna_decision_date
,cna_decision_summary
,cna_eol
, andcna_nocve
.
Versión 14.12.1 (2022-01-27)
- Commit 37a7cOptimizaciónCambio de APIIn API 1.13/2.29/3.37 provoking
405 Unknown request type
errors again is only possible after a few minutes. This prevents flooding the API access log and prevents misconfigured clients from exhausting the API credits quickly.
Versión 14.12.0 (2022-01-24)
- Commit 78570FuncionalidadAPT actor analysis view adds associated campaign details for IOC.
- Commit 78570FuncionalidadAPT actor analysis view adds associated CWE details for TTP.
- Commit 26292OptimizaciónGeneral performance optimization for all APT actor analysis views.
- Commit 1e67cOptimizaciónData shown in APT actor analysis view for non-authenticated users is based on real-time data.
Versión 14.11.8 (2022-01-21)
- Commit b1aa4OptimizaciónImprovement of URL validation during moderation to prevent incorrect values.
Versión 14.11.7 (2022-01-15)
- Commit 9fa88OptimizaciónImproved security of SPF and DMARC. Recommendations were submitted by Nikhil Rane.
- Commit 9fa88OptimizaciónImproved security and usability of signup procedure and passwort recovery procedure. Recommendations were submitted by Nikhil Rane.
Versión 14.11.6 (2022-01-14)
- Commit 68c68OptimizaciónLayout optimization of certain forms using additional information or CAPTCHA elements.
Versión 14.11.5 (2022-01-13)
- Commit ac2a6OptimizaciónPerformance tweaks of certain views.
Versión 14.11.4 (2022-01-12)
- Commit 28f48OptimizaciónHighly improved performance of APT actor analysis. Especially such with many known indicators of compromise.
Versión 14.11.3 (2022-01-11)
- Commit b59d0OptimizaciónPerformance and memory optimization of certain queries which do not need CTI data to be shown.
Versión 14.11.2 (2022-01-07)
- Commit 9ade9OptimizaciónMulti-threading has been optimized to decrease resource consumption and to increase performance.
- Commit 509bbOptimizaciónExternal links in the table of contents of the Knowledge Base open a new window.
Versión 14.11.1 (2022-01-05)
- Commit 545a1OptimizaciónBetter performance for quick APT actor identification on the front page.
Versión 14.11.0 (2022-01-04)
- Commit bfdcdFuncionalidadSolicitud de clienteIt is possible to do a CTI analysis of dedicated entries to show activities, interest distribution, active actors, and indicators of compromise. This feature requires an additional CTI license.
Versión 14.10.2 (2021-12-28)
- Commit f43ddCorrección de erroresUsers hiding their profile were not able to show their own profile. This has been fixed.
Versión 14.10.1 (2021-12-24)
- Commit 8b772OptimizaciónSolicitud de clienteScrollbars on Mozilla browsers are styled or even hidden whenever useful to provide a better user experience on smaller screens.
Versión 14.10.0 (2021-12-23)
- Commit ac413FuncionalidadThe new status page shows the status, load and utilization of service components.
Versión 14.9.0 (2021-12-22)
- Commit a0614FuncionalidadVulDB has been officially approved by the CVE program as a CVE Numbering Authority (CNA). We are authorized to handle new vulnerability submissions, assign unique CVEs and disclose them. Users may flag new vulnerability submissions to get a CVE. More information in our official press release.
- Commit e8c35OptimizaciónCyber threat intelligence activity scores on the front page are shown as bars to indicate heat faster.
Versión 14.8.1 (2021-12-18)
- Commit 158dbOptimizaciónImproved the order of the user menu on the Arabic edition of the site.
Versión 14.8.0 (2021-12-17)
- Commit bb5aeFuncionalidadSolicitud de clienteLanguage support for Russian (ru). This includes basic parts of the web site and vulnerability details.
Versión 14.7.0 (2021-12-14)
- Commit c958eFuncionalidadOur bug bounty is fully compliant with draft-foudil-securitytxt-12. You will find the current file at /.well-known/security.txt
- Commit d754bOptimizaciónAdditional intelligence of the search engine tries to determine potential product definitions. This increases accuracy of search requests.
Versión 14.6.0 (2021-12-12)
- Commit f4d42FuncionalidadViews with custom RSS feeds show an icon at the breacrumb navigation.
Versión 14.5.0 (2021-12-11)
- Commit 5e850FuncionalidadEntires in the Knowledge Base are linked to the table of contents to provide better accessibility of information.
- Commit d184fOptimizaciónSlightly improved confirmation email messages for moderated submissions.
Versión 14.4.1 (2021-12-10)
- Commit 5213bOptimizaciónCommit details show more information and link to additional resources.
- Commit 03ef5OptimizaciónPerformance optimization of the front page which loads the vulnerability of the day much faster.
Versión 14.4.0 (2021-12-09)
- Commit 53394FuncionalidadSolicitud de clienteAll documentation files are moved into the new Knowledge Base. Old links to the documentation remain valid.
- Commit e75bdOptimizaciónOptimized padding of breadcrumb items provides better usability.
Versión 14.3.1 (2021-12-08)
- Commit 9f087OptimizaciónNew multi-threading handling of expensive database queries increases the performance of many requests and views.
Versión 14.3.0 (2021-12-07)
- Commit 0328bFuncionalidadAdded a breadcrumb navigation item to access higher level sections easier.
- Commit 20adeFuncionalidadRelease versions in the changelog might be accessed via ID.
- Commit ebad6Corrección de erroresThe user data in the side menu are shown properly even if there are very long strings used.
Versión 14.2.0 (2021-12-06)
- Commit 3deaeFuncionalidadCVSSv3 pie chart lists do also include CNA data to improve comparison of different sources.
- Commit 06fc8OptimizaciónCommits listed in the changelog have type badges for better identification.
Versión 14.1.3 (2021-12-05)
- Commit 6ba63OptimizaciónDatabox with vulnerability of the day uses better search box for increased accessibility.
Versión 14.1.2 (2021-12-04)
- Commit ab33bOptimizaciónResponsive app elements behave better on smaller rectangular screens.
- Commit 07841Corrección de erroresAll risk views show data properly under any circumstances for authenticated users.
Versión 14.1.1 (2021-12-03)
- Commit e5209OptimizaciónSolicitud de clienteThe layout for printing views is optimized for better user experience.
- Commit d0822OptimizaciónThe language path for Japanese is changed from /jp/ to /ja/ to respect ISO 639-1 language two-letter conventions. Old links remain active and redirect to the new URL structure.
- Commit fa317OptimizaciónThe user menu layout has been optimized for better readability. Especially VulDB moderators and administrators get easier access to relevant data.
Versión 14.1.0 (2021-12-02)
- Commit e68e7FuncionalidadSome chart types, especially pie charts and doughnut charts, show an additional legend to provide better visibility of data.
- Commit 2fa71OptimizaciónSolicitud de clienteThe responsiveness of the user menu on the side behaves better on smaller screens.
- Commit ee455OptimizaciónExternal URLs to MITRE CVE link to the new cve.org domain.
Versión 14.0.1 (2021-12-01)
- Commit 786ddOptimizaciónMinor optimizations of layout elements of new app layout.
- Commit 61570OptimizaciónSolicitud de clienteThe settings page informs users about the character limit for custom alert filters. Purchasing additional licenses is required to extend this limit.
Versión 14.0.0 (2021-11-30)
- Commit bb919FuncionalidadSolicitud de clienteRelaunch of the service with a new layout and extended app capabilities.
Versión 13.41.1 (2021-11-11)
- Commit a667cOptimizaciónVulnerability entries without user comments show the requested languages, even if English was the only language selected.
- Commit 1ff69OptimizaciónLayout of the login recommendation to comment on vulnerability entries was optimized.
Versión 13.41.0 (2021-11-10)
- Commit 0c2aeFuncionalidadSolicitud de clienteCommercial customers using credit card as payment method are able to show their last invoices online. Invoices and receipts can be downloaded from our partner Stripe. All documents are hosted externally. VulDB does not store credit card details, invoices nor receipts.
Versión 13.40.1 (2021-11-09)
- Commit dbc8aCorrección de erroresCambio de APIIn API 2.28/3.36 the field
vulnerability_bugbounty_price
is only shown if there is a bug bounty price defined. - Commit 5fe48OptimizaciónPerformance improvement (CPU and memory consumption) of long list views.
Versión 13.40.0 (2021-11-08)
- Commit 505beFuncionalidadCambio de APISolicitud de clientein API 2.27/3.35 it is now possible to use URL encoding in advanced search queries to make them much easier to handle.
Versión 13.39.1 (2021-11-06)
- Commit 1c057Corrección de erroresSolicitud de clienteUnder rare circumstances a timeframe request did contain entries outside the defined timeframe. Additional validation has been introduced to prevent this effect. Reported by user guliang
Versión 13.39.0 (2021-11-03)
- Commit 02e0bFuncionalidadSolicitud de clienteLanguage support for Portuguese (pt). This includes basic parts of the web site and vulnerability details.
Versión 13.38.0 (2021-11-01)
- Commit 49840FuncionalidadSolicitud de clienteEnterprise customers are able to create a custom dashboard with individual charts and lists to maintain their professional vulnerability management.
Versión 13.37.0 (2021-10-29)
- Commit ecf36FuncionalidadExternal links in vulnerability entries known to be not working anymore are flagged as 404 Not Found.
- Commit 00f47OptimizaciónIn the commit view the column Moderated is renamed to Accepted to indicate the moment a change was approved.
Versión 13.36.2 (2021-10-27)
- Commit 6ba60OptimizaciónMost recent entries on the frontpage are listed faster and with more details right after the creation of a new entry.
Versión 13.36.1 (2021-10-26)
- Commit fe47aOptimizaciónSolicitud de clienteOverview pages with an huge number of entries are not limited anymore.
Versión 13.36.0 (2021-10-25)
- Commit 9d96dFuncionalidadSolicitud de clienteThe section exploits shows entries only if an exploit is available for download.
- Commit 7b0b6FuncionalidadSolicitud de clienteThe exploit prices areseparated from the generic exploit section.
Versión 13.35.1 (2021-10-19)
- Commit fab04OptimizaciónOptimization of summaries and descriptions in certain languages to better consider the expected vulnerability class of an entry.
Versión 13.35.0 (2021-10-09)
- Commit e2c39FuncionalidadCambio de APISolicitud de clienteThe search feature on the web site and the API supports the purl format used to identify a mostly universal package URL. It is predictive and supports extended structures like the advanced search and searching for CPE strings.
Versión 13.34.0 (2021-09-15)
- Commit 153c8FuncionalidadCambio de APIIn API 2.26/3.34 information about bug bounty organization
vulnerability_bugbounty_organization
, pricevulnerability_bugbounty_price
, and payout datevulnerability_bugbounty_payoutdate
were introduced.
Versión 13.33.1 (2021-09-13)
- Commit 4280aOptimización
Versión 13.33.0 (2021-09-10)
- Commit 951ceFuncionalidadCambio de APISolicitud de clienteIntroduction of the CNA CVSSv3 vector and score. The new fields are accessible via
vulnerability_cvss3_cna_*
. They are available on the web site and the latest API 3.33.
Versión 13.32.4 (2021-09-07)
- Commit 759f3OptimizaciónBetter handling of long strings of commit values shown in commit histories.
Versión 13.32.3 (2021-09-06)
- Commit 3c9baOptimizaciónRanges between versions and up to versions are shown with even higher level of accuracy. This includes titles and summaries as well.
Versión 13.32.2 (2021-09-02)
- Commit d29bbOptimizaciónImprovement of reliability and performance handling of internal submit queue processing.
Versión 13.32.1 (2021-08-31)
- Commit 7ad33OptimizaciónHardware upgrade for better memory and processing handling.
Versión 13.32.0 (2021-08-27)
- Commit 90877FuncionalidadSolicitud de clienteActor analysis lists determined TTP (Tactics, Techniques, Procedures)
- Commit 90877FuncionalidadSolicitud de clienteActor analysis lists determined IOA (Indicator of Attack)
Versión 13.31.0 (2021-08-26)
- Commit af5a0FuncionalidadOverview of APT actors highlights new actors and added indicators of compromise
Versión 13.30.1 (2021-08-25)
- Commit a0f19OptimizaciónBetter matching for CPE searches if the official CPE dictionary is not applied properly.
Versión 13.30.0 (2021-08-24)
- Commit 758aeFuncionalidadCTI Analysis provides a wide variety of statistical data regarding actors and activities.
Versión 13.29.3 (2021-08-23)
- Commit 2d4faOptimizaciónVulnerability comments in a specific language are only shown if the site is loaded in that language.
Versión 13.29.2 (2021-08-22)
- Commit 12bbeOptimizaciónFinalized data migration to provide much better performance.
- Commit 363e0Optimización
Versión 13.29.1 (2021-08-21)
- Commit b2396OptimizaciónEliminated all links to SecurityFocus vulnerability database as they discontinued the service. Thank you for all your contributions to the cyber security industry!
- Commit adec0OptimizaciónRe-ordered the listing of external resourced within the reference tables.
- Commit 9b464OptimizaciónNew color scheme for yearly comparison of CVSS base and temp vectors.
Versión 13.29.0 (2021-08-19)
- Commit c2a84FuncionalidadCyber threat intelligence activity index for software types on the frontpage use machine learning to predict activity index of the future.
- Commit 52c88OptimizaciónRanges between versions and up to versions are shown with higher level of accuracy. This includes titles and summaries as well.
Versión 13.28.11 (2021-08-18)
- Commit 2f6c2OptimizaciónAnnouncement banner is shown only if necessary to provide the maximum of space.
- Commit abbeaOptimizaciónTime-only statements are now always shown depending on the selected request language.
Versión 13.28.10 (2021-08-17)
- Commit 8ae38OptimizaciónVulnerability entries hide header tooltip icons as soon as the screen is too small to read them.
Versión 13.28.9 (2021-08-16)
- Commit 51f56OptimizaciónFaster calculation and loading of Threat Intelligence activity index chart on the frontpage.
Versión 13.28.8 (2021-08-15)
- Commit 2b166OptimizaciónBetter performance thanks to optimized database index for several different tables.
Versión 13.28.7 (2021-08-08)
- Commit 0fc46Corrección de erroresFixed a rare bug on the frontpage where very recent entries are not shown with all available technical details in the title.
Versión 13.28.6 (2021-08-07)
- Commit b4035OptimizaciónCorrected the right-to-left writing of HTML titles in the Arabic language version of the service.
Versión 13.28.5 (2021-08-05)
- Commit 98081OptimizaciónOptimized the capabilities of searching with CPE strings. Such searches are now much faster and more accurate.
Versión 13.28.4 (2021-08-04)
- Commit b697eOptimizaciónSolicitud de clienteAligned the listing of
entry_changelog
to show the field name ofvulnerabilitycenter_lastupdatedate
correctly. This issue was reported by Fergus Nelson. - Commit 006fcCorrección de erroresSolicitud de clienteUnder certain circumstances the calculation of exploit prices was not happening. This has been fixed. This bug was reported by Fergus Nelson.
Versión 13.28.3 (2021-08-02)
- Commit 9864dOptimizaciónExternal redirects first tested for malicious code are using HTTP status code 301 Moved Permanently instead of 302 Found.
Versión 13.28.2 (2021-07-28)
- Commit 8a3acOptimizaciónBetter layouting of the payment site for all languages.
Versión 13.28.1 (2021-07-27)
- Commit 293f1Corrección de errores
Versión 13.28.0 (2021-07-26)
- Commit 5f4e7FuncionalidadSolicitud de clienteLanguage support for Arabic (ar). This includes basic parts of the web site and vulnerability details. Right-to-left is implemented whenever required.
Versión 13.27.4 (2021-07-24)
- Commit 7430fOptimizaciónCurrent CTI scores in overviews are loaded and shown much faster which improves speed of site generation.
- Commit 7430fCorrección de erroresCurrent CTI scores are shown in overviews in any case even if the servers are under heavy load.
- Commit 7430fCorrección de erroresCurrent CTI scores in overviews show the correct timestamp of the last update for the most recent entries in the tooltip of the field.
Versión 13.27.3 (2021-07-17)
- Commit 6861bOptimizaciónBetter import and validation handling for APT actor IoC moderation to improve processing and quality.
Versión 13.27.2 (2021-07-16)
- Commit 363b6OptimizaciónClarification of titles of privilege escalation vulnerabilities. Remote issues that require some form of authentication are shown as Privilege Escalation without mentioning of Remote. Only remote issues without authentication are shown as true Remote Privilege Escalation.
- Commit 61142Corrección de erroresCambio de APISolicitud de clienteFixed a rare bug in API 1.11/2.24/3.31 that created an associative array for
software_version
if the list of versions numbers contained the value0
. Thanks to Fergus Nelson for reporting this issue.
Versión 13.27.1 (2021-07-15)
- Commit 6e469Corrección de erroresFixed a bug in the web entry view that undefined CVSSv2 vectors were shown with the value X instead of ND.
- Commit 6e469Corrección de erroresCambio de APIFixed a bug in API 1.10/2.23/3.30 that undefined CVSSv2 vectors were shown with the value X instead of ND.
- Commit 6e469Corrección de erroresFixed a bug in overviews to show tooltips for different CVSS sources of CVSSv3 Meta Temp Scores.
Versión 13.27.0 (2021-07-14)
- Commit cc0e3FuncionalidadSolicitud de clienteCyber threat intelligence events display emerging, current, and upcoming activities by actors.
- Commit dacc3Corrección de erroresFixed a bug that temp scores of CVSS vectors are not properly stored during initial entry create. This did not affect updated entries.
Versión 13.26.4 (2021-07-07)
- Commit 84a8bOptimizaciónNew layout for changelog for better readability.
- Commit ae57eOptimizaciónEvery commit shown in the changelog contains the commit ID for better reference.
- Commit 2e4f6OptimizaciónCommits in changelog provide permalink for easier access.
Versión 13.26.3 (2021-06-30)
- Commit ea669OptimizaciónReinstated linking to CVEdetails.com as they resumed adding and updating new CVEs.
Versión 13.26.2 (2021-06-25)
- Commit 28728OptimizaciónCambio de APISolicitud de clienteThe
Content-Type
of all API responses is changed toapplication/json; charset=utf-8
. This is not a change in the API itself which is why the version number of the API endpoints is not incremented.
Versión 13.26.1 (2021-06-24)
- Commit 0d89bOptimizaciónCambio de APISolicitud de clienteThe official vulnerability API endpoint is located at
/?api
and will redirect faulty URLs and GET parameters. Microsoft Power Apps did not respect this URL structure and changed the query string to a parameter tuple with an empty value. Our API endpoint redirected to the correct URL but Power Apps is not capable of following such HTTP redirects. This issue got fixed as Power Apps is now allowed to access the API endpoint even though the request URL format is not entirely correct.
Versión 13.26.0 (2021-06-18)
- Commit e9063FuncionalidadCambio de APISolicitud de clienteIn API 2.22/3.29 the field
vulnerability_attck
was made available. It contains the identifier of the associated MITRE ATT&CK technique.
Versión 13.25.3 (2021-06-16)
- Commit 0494bOptimizaciónPerformance optimization during stress (e.g. many users, DDoS attacks).
- Commit 9660eOptimizaciónChanged the algorithm to generate the category values
local
andremote
in the RSS feeds. Also added the valuepartial
forlocal
if the attack vector is physical.
Versión 13.25.2 (2021-06-15)
- Commit 55449OptimizaciónDedicated approval and handling of permissions to use extended CTI features.
- Commit 00931OptimizaciónThe user profile shows details about the purchased CTI license.
- Commit 0552fOptimizaciónBetter performance of generation of user menu for authenticated users.
Versión 13.25.1 (2021-06-14)
- Commit fd133OptimizaciónMore accurate timing information about new IoC (Indicator of Compromise) assigned to an APT actor.
Versión 13.25.0 (2021-06-11)
- Commit ed936Funcionalidad
Versión 13.24.1 (2021-06-09)
- Commit 0d01fOptimizaciónOptimized abuse detection of search queries for authenticated users.
Versión 13.24.0 (2021-06-08)
- Commit efc17FuncionalidadCurrent APT actor activities are shown on the community activity stream on the frontpage.
Versión 13.23.0 (2021-06-07)
- Commit 94a1eFuncionalidadDedicated access to CTI features in the item threat of the main menu.
- Commit fc8b2FuncionalidadSolicitud de clienteAccess to APT actor information to show activities, interest distribution, indicators of compromise, and external references. The analysis is based on unique activity data ranging back to 2016.
- Commit fc8b2FuncionalidadAccess to country-specific information to show activities and interest distribution.
Versión 13.22.1 (2021-06-04)
- Commit 03370OptimizaciónTimelines indicating activities show the so called activity index instead of the generic entries label.
- Commit 03359OptimizaciónBar charts showing exploit prives use exploit instead of the generic entries label.
Versión 13.22.0 (2021-05-31)
- Commit 7dc24FuncionalidadSolicitud de clienteViews with threat intelligence focus show APT actors identified during CTI activity analysis.
- Commit 5ada2FuncionalidadTitles of charts link to drilldown sites whenever possible.
Versión 13.21.0 (2021-05-26)
- Commit edf52FuncionalidadSolicitud de clienteLanguage support for Japanese (jp). This includes basic parts of the web site and vulnerability details.
Versión 13.20.4 (2021-05-18)
- Commit 02cd6OptimizaciónThe event of web code improvement shown in the community stream links to the changelog.
- Commit e9923OptimizaciónCambio de APIIn API 1.9/2.21/3.28 requests by the official Splunk app with a license of less than 10 API credits will throw an
403 Splunk app license expired
error to prevent stressing the service with expired Splunk installations.
Versión 13.20.3 (2021-05-12)
- Commit b4953OptimizaciónStreamlined entry identifier wording on community activity stream on the frontpage.
Versión 13.20.2 (2021-05-04)
- Commit 8d247OptimizaciónThe changelog does contain the version number of the service.
- Commit 5421dOptimizaciónAll major releases are shown in the changelog with a star.
Versión 13.20.1 (2021-05-02)
- Commit b0e75OptimizaciónCommunity activities shown on the frontpage do refer to entries with their corresponding VDB ID to increase readability.
Versión 13.20.0 (2021-04-29)
- Commit 0d72fFuncionalidadFrontpage does now show the latest changelog entries of the current day.
- Commit d6b22OptimizaciónSolicitud de clienteVulnerability entries do now always contain links to available upgrades and patches in the Countermeasure section.
Versión 13.19.3 (2021-04-28)
- Commit 6df70OptimizaciónPerformance optimization of the Threat Intelligence chart on the frontpage.
- Commit d1eb6Corrección de erroresSolicitud de clienteFixed an issue where count and overview of user commits were not updated. Reported by user misc
Versión 13.19.2 (2021-04-26)
- Commit a9542OptimizaciónHardware upgrade for better memory and processing handling.
- Commit 8dd8cOptimizaciónCambio de APIIn API 3.27 the values of numeric request types is verified and if not acceptable, a
400 Bad request
error message is shown.
Versión 13.19.1 (2021-04-24)
- Commit 3855bOptimizaciónOptimized load balancing, limiter, and DDoS mitigation to provide more stability for legitimate users.
Versión 13.19.0 (2021-04-22)
- Commit a85dcFuncionalidadSolicitud de clienteSubmitted items are reviewed by an automated pre-parser to define a priority for processing by the moderation team. This increases priority for most important items and therefore improves processing speed.
Versión 13.18.0 (2021-04-20)
- Commit 612a5FuncionalidadSolicitud de clienteLanguage support for Chinese simplified (zh-Hans). This includes basic parts of the web site and vulnerability details.
Versión 13.17.1 (2021-04-16)
- Commit b93edOptimizaciónCode optimization of CTI map generation for faster processing with less memory requirements.
Versión 13.17.0 (2021-04-15)
- Commit 1ffb5FuncionalidadSolicitud de clienteDescription of CTI trigger possibilities and threshold handling to create events and reports.
- Commit 881a3OptimizaciónFooter does now refer to your specific copyright and license depending whether there is a commercial, enterprise, or reseller license established.
Versión 13.16.0 (2021-04-12)
- Commit f7832FuncionalidadSolicitud de clienteSome users mistake their mail address as legitimate username to login. In this case a warning message informs the user about the mistake.
Versión 13.15.3 (2021-04-08)
- Commit 265e0OptimizaciónPerformance optimization for CTI country analysis (closed beta invite only at the moment). Time range analysis is now incremental which makes report generation much faster (especially for larger ranges).
Versión 13.15.2 (2021-03-31)
- Commit 05005OptimizaciónAll listings in the personal profile do contain timestamps to make identification of single items much easier.
- Commit cddb4OptimizaciónCompleted some of the missing translations for French, Italian, Spanish, Polish, and Swedish.
- Commit 6dc4aOptimizaciónImproved the handling of time format regarding country-specific definitions. The language en will show A.M. and P.M. only if the browser is also set to en-us. Otherwise the 24 hour format is used. If the language is set to fr and the browser announces fr-fr there will be the French format 12h34. The 24 hour format is also used as default for all languages without a specific definition.
Versión 13.15.1 (2021-03-30)
- Commit d71beCorrección de erroresFixed a bug where some long product names, product listings and titles did not show the product name in its entirety.
- Commit 44ee5OptimizaciónCambio de APIIn API 3.26 fixed an issue where queries for
advisory_date_start
,entry_timestamp_create_start
,entry_timestamp_change_start
, andentry_timestamp_all_start
did not work properly if the request value had a trailing whitespace.
Versión 13.15.0 (2021-03-29)
- Commit 15c50FuncionalidadCambio de APIThe personal API history does show the execution time for a request to help optimize queries. The column is shown as seconds and sortable.
- Commit c4d04FuncionalidadSolicitud de clienteAdded planned features in a roadmap to announce upcoming functionality. The items shown are just suggestions and might change regarding implementation and deployment.
Versión 13.14.3 (2021-03-28)
- Commit 1ec36OptimizaciónSolicitud de clienteBetter description of update handling, especially prioritization of new data for existing entries and update requests by customers.
- Commit ae8c3OptimizaciónOptimized the description of different commit moderation approaches. The actions for handling spam and profanity are explained in detail.
Versión 13.14.2 (2021-03-26)
- Commit 206dfCorrección de erroresCambio de APIIn API 2.20/3.25 the list of multiple items in
software_affectedlist
andsoftware_notaffectedlist
do trim trailing whitespaces correctly.
Versión 13.14.1 (2021-03-25)
- Commit a8cdfOptimizaciónAdded a new community rank Guru which requires 5000 points to be reached. Therefore, Grand Master is not the highest rank anymore.
Versión 13.14.0 (2021-03-24)
- Commit 434e3FuncionalidadCambio de APISolicitud de clienteIntroduced API 3.24 with the new request type
entry_timestamp_all_start
which combines new items fromentry_timestamp_create_start
and updated items fromentry_timestamp_change_start
in a single stream.
Versión 13.13.1 (2021-03-20)
- Commit 26de8OptimizaciónOptimized speed and memory consumption of queries based on LIKE statements in search queries.
Versión 13.13.0 (2021-03-17)
- Commit 1daf9FuncionalidadSolicitud de clienteDocumentation of the different levels used in the field exploit_exploitability shown on multiple listings on the web site.
Versión 13.12.0 (2021-03-10)
- Commit 699d0FuncionalidadSolicitud de clienteMade internal changelog public to provide full transparency for our customers. Entries earlier than 2020 just show milestones and not detailed changes.
- Commit 43dfeFuncionalidadAdded link to changelog under support in main menu and in the footer of the page.
- Commit c0ba0OptimizaciónUpdated internal quality guidance for CVSS fields during creation of new entries based on official Microsoft disclosures.
Versión 13.11.3 (2021-03-08)
- Commit 1faf6OptimizaciónUpdated internal quality requirements for
advisory_person_name
andadvisory_person_nickname
fields to prevent inaccurate information during daily update procedure.
Versión 13.11.2 (2021-03-04)
- Commit ecf32OptimizaciónOptimized limiter to prohibit crawling of view elements by non-commercial users.
- Commit fa612OptimizaciónLimiter uses better geolocation data to prevent malicious users from changing IP addresses to slow down detection of abuse.
Versión 13.11.1 (2021-03-03)
- Commit 09cefCorrección de erroresFixed a rare German translation issue in a specific sentence of some vulnerability summaries.
Versión 13.11.0 (2021-03-01)
- Commit 17052FuncionalidadPrepared language database for upcoming translations.
- Commit b3dfcOptimizaciónOptimized language database for better performance.
Versión 13.10.0 (2021-02-28)
- Commit 021d4FuncionalidadCTI Analysis (closed-beta only) supports search strings for technology-specific research.
Versión 13.9.0 (2021-02-22)
- Commit e7965FuncionalidadAdded user element under search in main menu.
- Commit 7ed21OptimizaciónOptimized internal CTI event analysis module.
Versión 13.8.0 (2021-02-04)
- Commit 5626bFuncionalidadAdded load balancing features to handle performance peaks much better.
- Commit 2efadFuncionalidadEnabled priority module to provide high-availability for enterprise customers.
Versión 13.7.1 (2021-02-03)
- Commit 167acOptimizaciónOptimized normalize module to improve quality assurance of vulnerability data management.
Versión 13.7.0 (2021-02-01)
- Commit 14106FuncionalidadInitiated preparation for port of web services to PHP8. First polyfill functions tested.
Versión 13.6.1 (2021-01-17)
- Commit bdc13Corrección de erroresFixed a bug where some new user submissions were shown as rejected even though they were still not processsed yet. This issue was reported by user misc.
Versión 13.6.0 (2021-01-16)
- Commit 960f5FuncionalidadStart of internal testing for CTI attribution module to identify APT group activities as such. Used by CTI team to create CTI alerts and infos for paying customers.
Versión 13.5.4 (2021-01-09)
- Commit d53a8OptimizaciónCambio de APISolicitud de clienteChanged
entry_timestamp_delta
behavior from7200
to120
to keep commit grouping much smaller. Entries updated within a short period of time will pushed into the update stream to provide the most actual data to API users.
Versión 13.5.3 (2021-01-04)
- Commit 96326OptimizaciónPerformance improvement of search engine. Early dissection will speed up some specific search requests.
- Commit 96326OptimizaciónPerformance improvement of monoblock engine. Compilation of entries is a bit faster under certain circumstances.
Versión 13.5.2 (2020-12-23)
- Commit db3d5OptimizaciónUnordered lists in regular content to not a a maximum heigh and auto scrollbars anymore.
Versión 13.5.1 (2020-12-15)
- Commit c227fOptimizaciónPerformance optimization of monoblock data processing.
Versión 13.5.0 (2020-12-09)
- Commit 93707FuncionalidadAdded a stylesheet to display "time ago" for stream items.
Versión 13.4.0 (2020-12-08)
- Commit dcd32FuncionalidadCambio de APIIn API 3.23 added request type
cursorinit
to determine ideal initial cursor position for ongoing vulnerability stream (e.g. Splunk).
Versión 13.3.0 (2020-12-04)
- Commit 3abdfFuncionalidadIntroduced information regarding ATT&CK. The fields are currently auto-generated and not part of the monoblock.
- Commit dbcd2FuncionalidadCambio de APIIn API 2.19/3.22 added field
source_cve_cna
which contains a string of the CVE Numbering Authority that assigned the CVE. - Commit 118c6Corrección de erroresCorrected a display bug for tooltips of CVSS fields on certain overview pages.
Versión 13.2.1 (2020-12-03)
- Commit 6c403OptimizaciónOptimized signup flood protection to prevent malicious users from auto-generating community accounts.
Versión 13.2.0 (2020-11-26)
- Commit 0cd93FuncionalidadAdded new import feature for vulnerability moderators to handle custom entries and large batches of submissions.
- Commit a4571FuncionalidadThe differences in a diff view are highlighted by color to provide better visibility.
Versión 13.1.2 (2020-11-13)
- Commit 7983dOptimizaciónPerformance optimization of monoblock data processing.
Versión 13.1.1 (2020-11-06)
- Commit c87a7OptimizaciónMigration to new hardware.
Versión 13.1.0 (2020-11-02)
- Commit f6cc6FuncionalidadPaying customers do now see a summary on top of every vulnerability entry to identify the most important aspects of the vulnerability.
Versión 13.0.1 (2020-10-16)
- Commit 68339OptimizaciónOptimized some indexes within the database to improve performance.
Versión 13.0.0 (2020-10-09)
- Commit 8b201FuncionalidadIntroduced new monoblock structure to provide more possibilities like commits, commit histories, etc.
Versión 12.26.1 (2020-09-26)
- Commit b11f4OptimizaciónBetter, faster, and more accurate calculation of CTI interest scores.
Versión 12.26.0 (2020-09-10)
- Commit b015cFuncionalidadThe live symbol is pulsating.
- Commit 2d270OptimizaciónThe CSS code for the custom worldmap is deleted to stramline the CSS file.
Versión 12.25.1 (2020-08-10)
- Commit b3264OptimizaciónOptimization of browser rendering speed by adding
font-display: swap
to the CSS style sheet.
Versión 12.25.0 (2020-05-16)
- Commit f6e38FuncionalidadAdded an optimization banner to inform users about upcoming changes and features.
Versión 12.24.0 (2020-05-13)
- Commit 58be3FuncionalidadNew horizontal table style to make some upcoming views better readable.
Versión 12.23.5 (2020-05-01)
- Commit e655cOptimizaciónUpgrading to an extended server cluster for better performance.
Versión 12.23.4 (2020-04-17)
- Commit ee0ccCorrección de erroresCambio de APIIn API 3.21 the field
entry_timestamp_change
is now always present even if the entry was just created and never updated yet. In this case it will contain the same value likeentry_timestamp_create
. User of the official VulDB Splunk App are advised to update to the latest release.
Versión 12.23.3 (2020-03-04)
- Commit 328c8OptimizaciónCVEdetails.com stopped updating their database. We keep linking old CVEs to their sites but do not do so for newer entries.
Versión 12.23.2 (2020-01-10)
- Commit ce27fOptimizaciónAdded validation styles for numbers, dates, emails, and urls for forms. These detect missing or wrong data before submitting a form.
Versión 12.23.1 (2019-11-19)
- Commit 7d12fOptimizaciónDecreased the font-size of labes from 90% to 75% for better readability.
- Commit c8999OptimizaciónImproved style and layout of tooltips for better readability.
Versión 12.23.0 (2019-11-15)
- Commit 5c4b5FuncionalidadLoad new pages with extended loading time show progress bar spinner at top of the site.
Versión 12.22.0 (2019-11-09)
- Commit c4f43FuncionalidadAdded logos of vendors/products in entries if available.
- Commit 46f6eOptimizaciónStramlined CSS style sheet regarding mini buttons.
Versión 12.21.0 (2019-11-08)
- Commit 4f1afFuncionalidadAdded tooltips for easier access to more information.
- Commit 63433OptimizaciónAdded fade effect for mini buttons for a better user experience.
Versión 12.20.1 (2019-11-06)
- Commit 01634OptimizaciónStramlined box elements and columns.
Versión 12.20.0 (2019-10-31)
- Commit 032a9FuncionalidadCambio de APISolicitud de clienteIn API 3.20 added field
vulnerability_name
which contains a string or array a popular names of the vulnerability (e.g. Shellshock, Poodle).
Versión 12.19.0 (2019-09-13)
- Commit eaf94FuncionalidadCambio de APISolicitud de clienteIn API 3.19 added field family
entry_details_*
which containentry_details_affected
,entry_details_vulnerability
,entry_details_impact
,entry_details_exploit
,entry_details_countermeasures
, andentry_details_sources
.
Versión 12.18.0 (2019-08-31)
- Commit 34a45FuncionalidadCambio de APIIn API 3.18 added field
entry_replaces
to display duplicates which have been replaced by this entry.
Versión 12.17.0 (2019-08-26)
- Commit 3974bFuncionalidadCambio de APIIn API 3.17 added fields
vulnerability_cvss3_basevector_vuldb
andvulnerability_cvss3_tempvector_vuldb
to display full VulDB CVSSv3 vectors easily.
Versión 12.16.0 (2019-08-22)
- Commit 3ef93FuncionalidadAdded experimental world map to highlight CTI activities.
- Commit 5054eOptimizaciónImproved the layout of checkboxes on web forms.
Versión 12.15.0 (2019-07-06)
- Commit e5808FuncionalidadSolicitud de clienteVulDB administrators are able to provide DB dumps for faster onboarding of enterprise customers.
Versión 12.14.0 (2019-07-01)
- Commit 2fcc6FuncionalidadSolicitud de clienteIntroduction of software type categories available in the field
software_type
.
Versión 12.13.3 (2019-06-04)
- Commit dd112Corrección de erroresCambio de APIIn API 3.16 fixed value of field
advisory_identifier
, disabled safeguard mechanism to prevent inconsistency in result count.
Versión 12.13.2 (2019-06-01)
- Commit 26f6bOptimizaciónUpdated the Data Privacy Notice to clarifying wording and added details about payment processing.
Versión 12.13.1 (2019-05-27)
- Commit 6e92eOptimizaciónAdded loading bar on top of the page to indicate the loading of large pages.
Versión 12.13.0 (2019-05-24)
- Commit bcb85FuncionalidadSubmitting forms locks input fields and shows progress indicator.
Versión 12.12.0 (2019-05-17)
- Commit c9222FuncionalidadCambio de API
Versión 12.11.0 (2019-05-08)
- Commit 0fb91FuncionalidadCambio de APIIn API 3.14 requesting dedicated CVSS fields supports the official response format (e.g.
vulnerability_cvss3_vuldb_basescore
) and the legacy format (e.g.vulnerability_cvss3_basescore_vuldb
). The legacy format will be dropped in a future major release of the API.
Versión 12.10.1 (2019-04-24)
- Commit 1dc8aOptimizaciónImproved the layout of the search menu item for better accessibility.
- Commit bb0d0OptimizaciónThe status boxes of live views are now pulsating if there is currently some activity.
Versión 12.10.0 (2019-04-17)
- Commit d1042FuncionalidadCambio de APISolicitud de clienteIn API 1.8/2.18/3.13 added field
software_cpe23
which introduces full CPE 2.3 support whereassoftware_cpe
is still providing CPE 2.2 data.
Versión 12.9.0 (2019-04-15)
- Commit 3bfedFuncionalidadAdded a detailed clendar view for years an months.
- Commit faa07OptimizaciónStreamlined the row behavior.
Versión 12.8.2 (2019-04-10)
- Commit 35519OptimizaciónHovering a clickable symbol in an overview will now be indicated by the cursor as pointer.
- Commit cdf7bOptimizaciónImproved the layout of buttons inside text boxes (e.g. searches).
Versión 12.8.1 (2019-04-01)
- Commit 27ca6OptimizaciónCentered the purchase table for better accessibility.
Versión 12.8.0 (2019-03-29)
- Commit 54a22FuncionalidadSolicitud de clienteAdded the possibility to purchase new licenses online.
Versión 12.7.0 (2019-03-21)
- Commit e4bb6FuncionalidadAdded the possibility to search within the main menu.
Versión 12.6.0 (2019-03-15)
- Commit d3ac7FuncionalidadSolicitud de clienteAdded multiple levels to the main menu to provide better accessibility to the variety of features.
- Commit 35f3eFuncionalidadAdded the possibility for buttons within textboxes (e.g. searches).
Versión 12.5.0 (2019-03-08)
- Commit 1ae53FuncionalidadVulnerability entries do now show the exploit prices with a graphical element.
- Commit 74f44OptimizaciónImproved the display of symbols in overviews.
Versión 12.4.0 (2019-03-04)
- Commit 55a0eFuncionalidadCambio de APIIn API 1.7/2.17/3.12 added fields
entry_locked_status
andentry_locked_reason
to inform about entries undergoing update and review processes (they might change soon).
Versión 12.3.0 (2019-03-01)
- Commit 81d15FuncionalidadIntroduction of the C3BM Index (CVSSv3 Base Meta Index) based on CVSS data of multiple sources.
Versión 12.2.0 (2019-02-28)
- Commit 231a4FuncionalidadLarge tables might be shown with a striped layout to improve readability.
- Commit 16d23OptimizaciónImproved the layout of buttons in the user submenu.
Versión 12.1.0 (2019-02-25)
- Commit 9c6deFuncionalidadSolicitud de clienteSymbols in overviews are clickable to provide a drilldown feature. This is true for CVSS, exploit prices, exploitability, and countermeasures.
- Commit 92aacOptimizaciónHeader text is now a graphical element.
Versión 12.0.4 (2019-02-23)
- Commit 82de5OptimizaciónSlightly changed the colorization of remedation and exploitability levels.
Versión 12.0.3 (2019-02-22)
- Commit 55aa5OptimizaciónChanged the pointer behavior of certain table headers from grab to regular pointer.
Versión 12.0.2 (2019-02-21)
- Commit 81d16OptimizaciónStreamlined user menu buttons.
- Commit 81d16OptimizaciónStreamlined exploitability fields.
Versión 12.0.1 (2019-02-20)
- Commit 2d300OptimizaciónCambio de APIIn API 1.6/2.16/3.11 improved speed, reliability and accuracy of
updates
queries. - Commit d6d17OptimizaciónImproved the width behavior of user menu buttons.
- Commit a25daOptimizaciónLinks in overviews are clickable within the whole cell and not just on the text itself.
Versión 12.0.0 (2019-02-18)
- Commit b9184FuncionalidadSolicitud de clienteNew overviews introduced with a lot of information items.
- Commit 65679FuncionalidadAdded support for dynamic behavior for long tables with more than six columns.
- Commit 4c719OptimizaciónStreamlined the behavior of content and article.
- Commit 4c719OptimizaciónStreamlined the behavior of tables.
- Commit 4c719OptimizaciónStreamlined the behavior of buttons.
Versión 11.27.0 (2019-02-15)
- Commit c278eFuncionalidadAdded the posibility to fade-in some elements for a better user experience.
- Commit 07fdcOptimizaciónImproved the width behavior of user menu buttons.
Versión 11.26.0 (2019-02-08)
- Commit 7324eFuncionalidadAdded buzzboxes to show statistical data about the project.
- Commit 3b784OptimizaciónOptimized the margin behavior of columns.
Versión 11.25.0 (2019-02-06)
- Commit 250b0FuncionalidadCambio de APISolicitud de clienteIn API 3.10 added request parameter
offset
to set a starting point for results (pagination).
Versión 11.24.1 (2019-02-01)
- Commit 5d94fOptimizaciónReached the 10.000th community user. Congratulations!
Versión 11.24.0 (2019-01-18)
- Commit c5ee2FuncionalidadCambio de APIIn API 3.9 added field
software_type
.
Versión 11.23.0 (2019-01-11)
- Commit dfb03FuncionalidadCambio de APISolicitud de cliente
Versión 11.22.1 (2019-01-08)
- Commit 608e1Corrección de erroresCambio de APIIn API 1.5/2.15/3.7 field
software_component
is not returning multiple fields anymore to prevent parsing errors.
Versión 11.22.0 (2019-01-01)
- Commit 772cfFuncionalidad
Versión 11.21.0 (2018-12-13)
- Commit 1deb7FuncionalidadCambio de APISolicitud de clienteIn API 1.4/2.14/3.6 requesting details without unlocked archive access will warn in field
entry_warning
about limitation.
Versión 11.20.0 (2018-10-28)
- Commit d4c8eFuncionalidadLarge quantities of statistical views are created by Cronjobs to improve performance.
Versión 11.19.0 (2018-10-01)
- Commit 3b088FuncionalidadSolicitud de clienteLaunch of Video Tutorial Series on YouTube to introduce new users to the capabilities of the service.
Versión 11.18.1 (2018-09-20)
- Commit c4d5cOptimizaciónChanged the cursor behavior for votes from copy to default.
- Commit c4d5cOptimizaciónChanged the cursor behavior of ribbons to default.
Versión 11.18.0 (2018-09-18)
- Commit afb23FuncionalidadAdded custom ribbons to popup with interesting details if needed.
- Commit 8ee7cOptimizaciónImproved the behavior of items which have a fade-in effect.
Versión 11.17.0 (2018-09-01)
- Commit 8dfe7FuncionalidadSolicitud de clienteRelease of official Splunk App which is available on Splunkbase for free. Commercial or enterprise license is recommended.
Versión 11.16.0 (2018-08-31)
- Commit c00a7FuncionalidadSolicitud de clienteIntroduction of CPE lists in entry views to indicate the affected products.
Versión 11.15.0 (2018-08-06)
- Commit 9e978FuncionalidadCambio de APIIn API 3.5 support for the queries
advisory_date_start
,entry_timestamp_create_start
,entry_timestamp_change_start
. - Commit 576a2OptimizaciónSolicitud de clienteDisabled the gradients in symbols.
Versión 11.14.4 (2018-08-04)
- Commit 48a03OptimizaciónFixed an issue with the visibility of long date symbols.
Versión 11.14.3 (2018-08-03)
- Commit 7d763OptimizaciónImprovement of gradient in symbols.
- Commit 856afOptimizaciónAdding support for other font families in symbols.
Versión 11.14.2 (2018-08-02)
- Commit b0000OptimizaciónIntroduction of gradients in symbols.
Versión 11.14.1 (2018-08-01)
- Commit 7ef2dOptimizaciónIntroduction of antialiasing of fonts for better readability on high-resolution displays.
Versión 11.14.0 (2018-07-31)
- Commit dc2aeFuncionalidadAdded support for stream symbols shown on overviews.
Versión 11.13.1 (2018-07-22)
- Commit b675bOptimizaciónImproved the layout of mini buttons.
Versión 11.13.0 (2018-07-12)
- Commit b1af8FuncionalidadSolicitud de clienteAdded dynamic layouts for tables to hide certain columns under specific conditions. This improves the mobile view a lot.
Versión 11.12.1 (2018-07-10)
- Commit d5a10OptimizaciónOptimized the margin of header elements.
Versión 11.12.0 (2018-07-06)
- Commit bc316FuncionalidadIntroduction of the user menu for authenticated users. This menu shows additional details and provides access to more features.
Versión 11.11.3 (2018-07-05)
- Commit be3b7OptimizaciónA new table wrapper optimizes how tables are shown on different screen sizes.
Versión 11.11.2 (2018-07-04)
- Commit c4570OptimizaciónStreamlining of cvss lists.
Versión 11.11.1 (2018-06-29)
- Commit 7409eOptimizaciónStreamlining of mini button for unlock announcements.
Versión 11.11.0 (2018-06-28)
- Commit b09c3FuncionalidadIntroduction of column views, as used in the documentation section of the service.
Versión 11.10.1 (2018-06-12)
- Commit 76199Corrección de erroresCambio de APISolicitud de clienteIn API 2.13/3.4 fixed enforcement of
querylimit
fordetails=0
queries. This issue was reported by user portal.
Versión 11.10.0 (2018-06-11)
- Commit 361d1FuncionalidadCambio de API
Versión 11.9.4 (2018-06-10)
- Commit 2ed12OptimizaciónStreamlining of mini buttons.
Versión 11.9.3 (2018-06-08)
- Commit 88f01OptimizaciónMini buttons do now animate on hover.
Versión 11.9.2 (2018-06-06)
- Commit 216dfCorrección de erroresCambio de APISolicitud de clienteIn API 1.3/2.12/3.2 fixed wrong values in
response_remaining
(calculation was correct, value shown was wrong). This issue was reported by user portal.
Versión 11.9.1 (2018-06-04)
- Commit 6d6d9Corrección de erroresCambio de API
Versión 11.9.0 (2018-05-18)
- Commit ab9a7FuncionalidadCambio de APISolicitud de cliente
Versión 11.8.0 (2018-05-15)
- Commit 38be8FuncionalidadCambio de API
- Commit 38be8FuncionalidadCambio de APIIn API 2.10 added
vulnerability_risk
(also shown in non-detail responses).
Versión 11.7.1 (2018-05-14)
- Commit 1d0c8OptimizaciónCambio de APISolicitud de clienteIn API 2.9 added detailed error messages regarding API key problems (
missing
,wrong
,unknown
,valid
). - Commit 1d0c8OptimizaciónCambio de APIIn API 2.9 enterprise customers have performance priority over free users.
Versión 11.7.0 (2018-05-08)
- Commit a20dbFuncionalidadCambio de APIIn API 2.8 the field
entry_title
does not show CVE anymore. - Commit a20dbFuncionalidadCambio de APIIn API 2.8 added fields
vulnerability_timeline
,countermeasure_reactiondays
,countermeasure_0daydays
,countermeasure_exposuredays
, andcountermeasure_exploitdelaydays
.
Versión 11.6.0 (2018-05-07)
- Commit 7e839FuncionalidadCambio de APISolicitud de clienteIn API 2.7 added support for request type
topsoftware
.
Versión 11.5.0 (2018-05-01)
- Commit c968eFuncionalidadMade Data Privacy Notice available to comply with european GDRP requirements.
Versión 11.4.0 (2018-04-01)
- Commit 3bdb9FuncionalidadRelease of Alexa Skill to make vulnerability management possible with the AI by Amazon. More information.
Versión 11.3.0 (2018-03-22)
- Commit b90e6FuncionalidadSolicitud de clienteWorking on a proof-of-concept to use Alexa as a gateway to work with vulnerability data.
Versión 11.2.3 (2018-02-17)
- Commit f3590OptimizaciónIntroduction of a container element to have more flexibility with layout positioning on the web frontend.
Versión 11.2.2 (2018-02-01)
- Commit 51a81OptimizaciónIntroduction of a sub-title on the site title to better describe the service.
Versión 11.2.1 (2018-01-29)
- Commit 2638bOptimizaciónOfficial approval of VulDB by Norton Site Checker. The service is rated as safe.
Versión 11.2.0 (2018-01-22)
- Commit 49bb7FuncionalidadCambio de APIUpgrade to API 2.0. Response contains three elements (request, response, result) instead just the results.
Versión 11.1.1 (2017-09-23)
- Commit aebb3OptimizaciónImprovement of the container margins to have a better layout.
Versión 11.1.0 (2017-09-16)
- Commit 05eb4FuncionalidadPartnership with Titanium Team of scipag to establish Cyber Threat Intelligence services (CTI). More information.
Versión 11.0.1 (2017-06-02)
- Commit 45634OptimizaciónOptimization of automated exploit price calculation to gain more accuracy.
Versión 11.0.0 (2017-06-01)
- Commit a862dFuncionalidadIntroduction of dynamic graphs shown in different views.
Versión 10.12.2 (2017-05-19)
- Commit a7bd0OptimizaciónOptimization of the official Twitter feed.
Versión 10.12.1 (2017-05-16)
- Commit 93c6eCorrección de erroresFixed a display issue on the frontpage. Under certain circumstances new items were not shown as bold.
Versión 10.12.0 (2017-04-28)
- Commit 7a1d8FuncionalidadAdded dynamic charts in the results overview of web searches.
Versión 10.11.0 (2017-04-21)
- Commit e7f52FuncionalidadAdded dynamic charts of all kind of overview pages.
Versión 10.10.0 (2017-04-10)
- Commit 97ed5FuncionalidadCreated an About page which explains the history of our vulnerability service.
Versión 10.9.0 (2017-04-01)
- Commit 3d204FuncionalidadAdded the 100.000th entry to the database. Check the stats for more details. Congratulations!
Versión 10.8.0 (2017-03-22)
- Commit 1f1f6FuncionalidadSolicitud de clienteVulnerability entries flagged as false-positive do now highlight this fact on their pages (title and introduction).
Versión 10.7.0 (2017-03-21)
- Commit 2eb19FuncionalidadIntroduced data for OVAL and IAVM. Completed all existing entries with appropriate data.
Versión 10.6.0 (2017-02-23)
- Commit f7af4FuncionalidadSolicitud de clienteSupporting CVSS scores from multiple sources (VulDB, vendor, researcher, NVD).
Versión 10.5.1 (2017-02-13)
- Commit 915e2OptimizaciónOptimized the indexing of the database to improve search performance.
Versión 10.5.0 (2017-02-01)
- Commit a1e82FuncionalidadPublic availability of community edition. Create your account for free.
Versión 10.4.1 (2017-01-20)
- Commit ed89aOptimizaciónOptimized performance by using specific features and configuration settings in PHP7.
Versión 10.4.0 (2017-01-18)
- Commit 2eb99FuncionalidadAdded an advanced search on the web site to improve specific search capabilities.
Versión 10.3.0 (2017-01-01)
- Commit 766b4FuncionalidadStart open beta of community edition.
Versión 10.2.0 (2016-12-20)
- Commit afa9dFuncionalidadIntroduced Bug of the Day on the front page. One of the more serious or interesting issues of the recent days is shown every day.
Versión 10.1.1 (2016-12-19)
- Commit e0724OptimizaciónRedesign of the frontpage with a slick layout and better data accessibility.
Versión 10.1.0 (2016-12-16)
- Commit 17b00FuncionalidadImplemented a module to detect loss of data integrity on the service.
Versión 10.0.0 (2016-12-01)
- Commit 88cceFuncionalidadCambio de APISolicitud de clienteIntroduction of public API to provide vulnerability for automated processing.
Versión 9.19.1 (2016-11-08)
- Commit 1bf65OptimizaciónOptimization of database table structures to gain more flexibility and performance.
Versión 9.19.0 (2016-11-07)
- Commit 41c1aFuncionalidadImplementation of Content Security Policy (CSP) to improve web security of the service.
Versión 9.18.0 (2016-11-02)
- Commit 2c835FuncionalidadIt is now possible to upvote comments for vulnerability entries. Upvoted comments are shown on top of the list.
Versión 9.17.0 (2016-11-01)
- Commit 01762FuncionalidadStart closed beta of community edition.
Versión 9.16.0 (2016-10-26)
- Commit 464dcFuncionalidadEditing a section of a vulnerability will automatically jump to the correct section of the edit form.
Versión 9.15.0 (2016-10-25)
- Commit cbba3FuncionalidadExisting vulnerability entries can now be edited immediately by members of the moderation team.
Versión 9.14.0 (2016-10-14)
- Commit 83203FuncionalidadEnhanced the existing cache module to allow caching of database queries and results.
Versión 9.13.0 (2016-10-11)
- Commit 786cbFuncionalidadEvery user account has now a profile.
- Commit 7868eFuncionalidadRegistered users are able to tweak their own configuration of the service.
Versión 9.12.0 (2016-10-10)
- Commit b9c2dFuncionalidadRegistered users are able to see history of vulnerability entries they have been viewing earlier.
Versión 9.11.0 (2016-10-07)
- Commit 7da47FuncionalidadRegistered users are able to gain community points with activities to get a higher ranking on the site.
Versión 9.10.0 (2016-10-06)
- Commit f618bFuncionalidadUsers are able to submit new entries which will be queued and processed by the vulnerability moderation team.
Versión 9.9.0 (2016-10-05)
- Commit da14aFuncionalidadUsers accessing resources which require an authentication receive a proper error message.
Versión 9.8.0 (2016-10-04)
- Commit 2f00fFuncionalidadUsers are able to reset their password via email (password recovery).
Versión 9.7.0 (2016-10-03)
- Commit 5a1b1FuncionalidadSolicitud de clienteLogins with a new device or from an unknown source will inform the account holder about the potentially suspicious login. New devices are stored and shown in the personal device management overview.
Versión 9.6.0 (2016-06-24)
- Commit 688a5FuncionalidadAdded a limiter to prevent malicious users from scraping our data without authorization.
Versión 9.5.0 (2016-06-22)
- Commit c4477FuncionalidadSolicitud de clienteAdded full support for CVSSv3.
Versión 9.4.0 (2016-10-01)
- Commit 0aa68FuncionalidadIntroduction of exploit price calculations to provide a better tool to prioritize exposed vulnerabilies.
Versión 9.3.1 (2016-07-05)
- Commit 4aa37OptimizaciónPerformance optimization for all web views.
Versión 9.3.0 (2016-06-30)
- Commit 4aecfFuncionalidadSome statistical data is now stored in a centralized table which allows them to be shown on multiple places without new calculations every time.
Versión 9.2.0 (2016-05-02)
- Commit 3fee0FuncionalidadSupport for data fields of Tenable Nessus.
Versión 9.1.1 (2016-04-29)
- Commit 756eaOptimizaciónOptimize redirects of RSS feed requests.
Versión 9.1.0 (2016-04-27)
- Commit 8ab5bFuncionalidadSome data points are now shown in bubbles.
- Commit 939cfOptimizaciónIntroduced a new site footer.
Versión 9.0.0 (2016-04-14)
- Commit b3559OptimizaciónComplete rewrite of the search engine to provide better matches and optimized performance.
Versión 8.1.2 (2016-04-06)
- Commit 3ce21OptimizaciónOptimization of HTML code to make pages smaller and faster to download and render.
Versión 8.1.1 (2016-04-04)
- Commit 3b609Corrección de erroresFixed a bug or slow indexes which improved the performance of vulnerability display a lot.
Versión 8.1.0 (2016-04-01)
- Commit 7bc0aFuncionalidadIntroduction of new summaries and descriptions with more data enrichment.
- Commit 56864OptimizaciónPerformance optimization.
Versión 8.0.0 (2016-03-14)
- Commit 5e4e5FuncionalidadIntroducing Chart.js to generate dynamic charts.
Versión 7.1.3 (2016-03-11)
- Commit a0b92OptimizaciónEstablish VulDB as independent service to gain more flexibility.
Versión 7.1.2 (2016-02-23)
- Commit 76b37OptimizaciónMigration to new hardware.
Versión 7.1.1 (2016-02-17)
- Commit 07bfbOptimizaciónRenaming the Twitter handle from scipvulbot to "vuldb"https://twitter.com/vuldb.
Versión 7.1.0 (2016-01-19)
- Commit 55bf1FuncionalidadEnhancing statistical overview to provide previews and forecasts based in historical data.
- Commit 72424FuncionalidadCreating new text for different pages and sub-pages.
Versión 7.0.5 (2015-12-01)
- Commit ea951OptimizaciónSolicitud de clienteAdding caching modules to improve site performance. Caching is possible per site and file.
Versión 7.0.4 (2015-11-20)
- Commit 58defOptimizaciónSolicitud de clienteIncreasing update frequency of existing entries.
Versión 7.0.3 (2015-08-19)
- Commit 2ddb7Corrección de erroresCorrected the listing of multiple authors of a vulnerability.
Versión 7.0.2 (2015-08-07)
- Commit 3b6e7OptimizaciónMore performance optimization of database queries.
Versión 7.0.1 (2015-08-03)
- Commit b1554OptimizaciónPerformance optimization of database queries.
Versión 7.0.0 (2015-07-10)
- Commit 243a7FuncionalidadRedesign of modular frontpage with the introduction of Top 5 lists.
Versión 6.31.0 (2015-07-07)
- Commit 44e99FuncionalidadAdding Qualys data to vulnerability entries.
- Commit fe3d0FuncionalidadAdding SecurityCenter data to vulnerability entries.
Versión 6.30.0 (2015-03-09)
- Commit e19c1FuncionalidadIntroduction of new queue for vulnerability processing by mod team.
Versión 6.29.3 (2015-02-25)
- Commit 8695fOptimizaciónOptimization of all X-Force data import and display.
Versión 6.29.2 (2015-02-03)
- Commit 3453eOptimizaciónOptimizaton of summaries and descriptions of vulnerability entries.
Versión 6.29.1 (2015-01-08)
- Commit 7ac76OptimizaciónOptimization of version descriptions of vulnerability entries.
Versión 6.29.0 (2014-06-24)
- Commit 0b232FuncionalidadSolicitud de clienteApproaching backlog of old entries before 2003 with vulnerabilities ranging back to 1988. More information.
Versión 6.28.0 (2014-05-26)
- Commit 0f72aFuncionalidadIntroduction of the "see also" hint which lists entries with are connected or similar.
Versión 6.27.0 (2014-04-17)
- Commit 35f6fFuncionalidadAdding a field to declare the date of the introduction of a vulnerability.
Versión 6.26.1 (2014-03-27)
- Commit 3efc3OptimizaciónOptimization of queuing of new vulnerabilities to better prioritize processing.
Versión 6.26.0 (2014-03-20)
- Commit 7caf2FuncionalidadSolicitud de clienteAdded language support for Polish.
Versión 6.25.12 (2014-03-14)
- Commit bc799OptimizaciónDatabase index optimization.
Versión 6.25.11 (2014-03-07)
- Commit d0ddaOptimizaciónOptimizing collision detection during the processing of new entries.
Versión 6.25.10 (2014-02-10)
- Commit ce076OptimizaciónOptimizing summaries regarding sources of vulnerability entries.
Versión 6.25.9 (2014-01-29)
- Commit 03d37OptimizaciónAdded helper for vulnerability moderation team to determine arguments of attacks faster and more reliable.
Versión 6.25.8 (2014-01-28)
- Commit 53a64OptimizaciónOptimizing summaries regarding code samples.
Versión 6.25.7 (2014-01-23)
- Commit 61b0dOptimizaciónOptimizing helper for vulnerability moderation team to complete new and existing entries with additional data. This increases data quality drastically.
Versión 6.25.6 (2014-01-14)
- Commit a17f4Corrección de erroresFixed a bug where sometimes summaries and descriptions did contain spaces twice instead of once. This was just a problem in the HTML source code and not on the rendered web site.
Versión 6.25.5 (2014-01-09)
- Commit 1cd31OptimizaciónAdded helper for vulnerability moderation team to determine keywords which shall be used within the title of a vulnerability entry.
Versión 6.25.4 (2013-12-19)
- Commit 12a4fOptimizaciónOptimizing the autocomplete feature to update new entries with historical data.
Versión 6.25.3 (2013-11-06)
- Commit 1434cOptimizaciónOptimizing the pre-parser to handle import of new vulnerability entries.
Versión 6.25.2 (2013-10-22)
- Commit a52cfOptimizaciónChanging the algorithm to calculate the current threat level.
Versión 6.25.1 (2013-10-21)
- Commit 921d7OptimizaciónChanging the algorithm to calculate the risk rating of vulnerability entries.
Versión 6.25.0 (2013-10-18)
- Commit b4283FuncionalidadAdding the support for OpenVAS data.
Versión 6.24.0 (2013-10-17)
- Commit 01303FuncionalidadIntroducing the threat level to show an indicator for the current vulnerability landscape.
Versión 6.23.0 (2013-10-03)
- Commit e8e8fFuncionalidadAdding the possibility to add a custom word to the title to provide more details on first sight.
Versión 6.22.0 (2013-10-01)
- Commit f8c1eFuncionalidadEstablishing a background updater which handles entries which need to be updated without interfering with the manual work of the moderation team.
- Commit 5abb3OptimizaciónEnhancement of the review procedure of CVE entries pushed by MITRE to improve processing and quality.
Versión 6.21.0 (2013-09-13)
- Commit 9f09fFuncionalidadCollaboration with vFeed to exchange and enrich vulnerability data. More information.
Versión 6.20.1 (2013-09-12)
- Commit 088acOptimizaciónCompleting all existing entries with Secunia data.
Versión 6.20.0 (2013-09-11)
- Commit 2b409FuncionalidadIntroducing risk maps to provide easy comparability between risk ratings of different sources.
Versión 6.19.0 (2013-09-10)
- Commit 8966cFuncionalidadIntroducing support for Secunia data as a source.
- Commit 8966cFuncionalidadIntroducing support for IBM X-Force data as a source.
Versión 6.18.0 (2013-08-23)
- Commit 3881dFuncionalidadAdded the 10.000th entry about Google Chrome to the database. Check the stats for more details. Congratulations! More information.
Versión 6.17.0 (2013-08-12)
- Commit d8b39FuncionalidadSolicitud de cliente
Versión 6.16.0 (2013-08-09)
- Commit 40986FuncionalidadAdding support for a wide variety of new data fields.
Versión 6.15.2 (2013-07-05)
- Commit 4dffeOptimizaciónEnhancement of the review procedure of Nessus entries.
Versión 6.15.1 (2013-06-28)
- Commit 4b14bOptimizaciónOptimizing the plausability checks during vulnerability moderation to prevent contradicting and wrong data.
Versión 6.15.0 (2013-06-19)
- Commit 0b42cFuncionalidadAdded support for CPE to better identification of products.
Versión 6.14.1 (2013-06-11)
- Commit 0b61cOptimizaciónUpdating large quantities of vulnerabilities is now improved thanks to incremental updates.
Versión 6.14.0 (2013-06-03)
- Commit 207dbFuncionalidadAdded support for screenshots per entries to illustrate attacks and countermeasures. More information.
- Commit 207dbFuncionalidadAdded support to embed external videos per entries to illustrate attacks and countermeasures. Videos can be hosted at YouTube and Vimeo. More information.
Versión 6.13.0 (2013-05-31)
- Commit 22b2bFuncionalidadAdded the capability to add quotes from advisories to enrich entries.
- Commit 22b2bFuncionalidadAdded the capability to add links to videos for a vulnerability.
Versión 6.12.0 (2013-04-29)
- Commit 57d8eFuncionalidadIntroduction of CVSS maps. More information.
Versión 6.11.0 (2013-04-11)
- Commit 6a9d2FuncionalidadAdded the capability to list multiple different products in an affected list. This is done additionally to the main product that is affected by a vulnerability.
Versión 6.10.2 (2013-04-04)
- Commit 239acOptimizaciónEnhanced input validation mechanism during vulnerability management to prevent mistakes regarding vendor/product definitions.
Versión 6.10.1 (2013-03-28)
- Commit 497c0OptimizaciónOptimization of logging and tracking of queued items processed by the moderation team.
Versión 6.10.0 (2013-03-19)
- Commit c46f6FuncionalidadAdded input validation mechanisms during vulnerability management.
- Commit bc987OptimizaciónOptimized input validation mechanisms during vulnerability management.
Versión 6.9.1 (2013-01-09)
- Commit b0410Corrección de erroresFixed an issue in the database. This did only affect moderation of vulnerabilities and was not reflected on the user-side of the service.
Versión 6.9.0 (2012-12-21)
- Commit 79a9bFuncionalidadAdded a feature to normalize terms between different vulnerability entries.
Versión 6.8.1 (2012-11-26)
- Commit d0a20OptimizaciónPrepared the support for Milw0rm data for entries with an ID up to 50000.
Versión 6.8.0 (2012-10-31)
- Commit d83e7FuncionalidadSolicitud de clienteAdded language support for French. More information.
Versión 6.7.0 (2012-10-15)
- Commit 5a191FuncionalidadSolicitud de clienteAdded language support for English. More information.
Versión 6.6.0 (2012-10-01)
- Commit 61e91FuncionalidadSolicitud de clienteAdded language support for Spanish. More information.
- Commit 58566Corrección de erroresFixed an upload problem of new entries into the database.
Versión 6.5.0 (2012-09-24)
- Commit a75e7FuncionalidadSolicitud de clienteAdded language support for Swedish. More information.
Versión 6.4.0 (2012-07-04)
- Commit a681eFuncionalidadMigrating all available data from NASLDB.
Versión 6.3.0 (2012-06-18)
- Commit 98ea9FuncionalidadSolicitud de clienteAdded language support for Italian. More information.
- Commit 7b83dCorrección de erroresFixed a problem in the German module responsible to handle umlauts.
Versión 6.2.2 (2012-06-05)
- Commit 895eaOptimizaciónOptimizing the autocomplete feature to update new entries with historical data.
Versión 6.2.1 (2012-04-10)
- Commit 3a3bbCorrección de erroresFixed a problem during the display of archive data.
Versión 6.2.0 (2012-03-13)
- Commit e00e9FuncionalidadAdded support for better linking to external sources.
Versión 6.1.1 (2012-03-09)
- Commit d36aeOptimizaciónAdded new categories/keywords in the existing RSS feeds.
Versión 6.1.0 (2012-03-08)
- Commit c17b6FuncionalidadAdded the calculation of the exposure time which measures the time of the disclosure and the mitigation possibilities of a vulnerability.
- Commit 23aa8OptimizaciónReviewed all available data of OSVDB.
Versión 6.0.0 (2012-03-06)
- Commit 934a4OptimizaciónOptimization of summaries and descriptions.
- Commit 3484cFuncionalidadAdded support to show images of vendors/products.
- Commit 3484cFuncionalidadAdded support for Google dorks to find issues very quickly.
Versión 5.2.2 (2012-03-05)
- Commit 90cf5OptimizaciónPerformance optimization.
Versión 5.2.1 (2012-03-02)
- Commit e27acOptimizaciónPerformance optimization.
Versión 5.2.0 (2012-02-15)
- Commit d6183FuncionalidadAdded web import feature for vulnerability moderators to handle new entries based on web resources.
Versión 5.1.0 (2012-01-06)
- Commit 2e4edFuncionalidadAdded single import feature for vulnerability moderators to handle single entries outside the regular queueing.
Versión 5.0.0 (2011-02-22)
- Commit 04086FuncionalidadEstablishing new database backend with much more possibilities.
Versión 4.10.2 (2010-12-01)
- Commit 8b4dfOptimizaciónMove to more powerful hardware due to increase in access.
Versión 4.10.1 (2010-07-30)
- Commit 787d2OptimizaciónBackporting all information for reference maps of existing entries.
Versión 4.10.0 (2010-06-10)
- Commit 57677FuncionalidadAdding Alert Info on web site to inform visitors about latest critical issue.
- Commit 80bfaFuncionalidadDelivering ads for non-paying and unauthenticated users.
- Commit acc6fOptimizaciónOptimizing database structure for more flexibility and performance.
Versión 4.9.0 (2010-03-08)
- Commit dbea0FuncionalidadIntroduction of Reference Maps for better linking of vulnerabilities and sources. More information.
Versión 4.8.1 (2010-02-10)
- Commit e7405OptimizaciónMake more statistical data available with better flexibility.
Versión 4.8.0 (2010-02-08)
- Commit 47351FuncionalidadAdding the alert info on top of the site to show the most recent vulnerability with the highest emergency rating.
Versión 4.7.2 (2020-02-05)
- Commit 1a52bOptimizaciónImprovement of VulDB alert system.
Versión 4.7.1 (2010-02-02)
- Commit aa53eOptimizaciónImproved summary details per entries. More information.
- Commit bd3fdOptimizaciónPerformance optimization for all RSS feeds. More information.
Versión 4.7.0 (2011-01-11)
- Commit 90de3FuncionalidadSolicitud de clienteAdded VulDB Alert to inform customers about issues applicable for them.
Versión 4.6.0 (2009-12-16)
- Commit 9b5dcFuncionalidadPartnership with OSVDB to cross-link vulnerability entries. More information.
Versión 4.5.0 (2009-10-27)
- Commit 3dd4eFuncionalidadIntroduction of statistical overview. More information.
- Commit 3dd4eFuncionalidadIntroduction of product overview. More information.
Versión 4.4.0 (2009-09-03)
- Commit 399e8FuncionalidadStart of the Twitter bot vuldb (formerly known as scipvulbot). More information.
Versión 4.3.0 (2009-08-25)
- Commit 61ad7FuncionalidadCompleting existing entries with most actual data. This includes but is not limited to CVE, Secunia, SecurityTracker, vendor, and confirmation details. More information.
Versión 4.2.0 (2009-08-20)
- Commit 411d3FuncionalidadAdding new data fields to enrich vulnerability entries.
Versión 4.1.0 (2009-08-01)
- Commit d21a3FuncionalidadIntroduction of recurring update processes.
Versión 4.0.1 (2009-06-26)
- Commit b47f5OptimizaciónOptimization of existing RSS feeds by adding summaries and categories. More information.
Versión 4.0.0 (2009-06-23)
- Commit c26c1OptimizaciónComplete re-write of the site in PHP. More information.
Versión 3.5.0 (2006-07-01)
- Commit 42fffFuncionalidadEmergency-SMS notification service becomes available in Germany. More information.
Versión 3.4.0 (2004-05-19)
- Commit a1c50FuncionalidadAdding a lot of new data fields to enrich vulnerability entries. More information.
Versión 3.3.0 (2004-01-01)
- Commit a2ec5FuncionalidadIntroduction of Emergency-SMS notification service.
Versión 3.2.0 (2003-12-19)
- Commit 37bc3FuncionalidadIntroduction of RSS feed. More information.
Versión 3.1.0 (2003-11-18)
- Commit 8a989FuncionalidadInitial release of scip_Alerter for desktop notifications. More information.
Versión 3.0.0 (2003-03-01)
- Commit d28caFuncionalidadService is completely re-written in Perl and uses a dedicated backend for vulnerability moderation to gain more flexibility.
- Commit 94f12OptimizaciónBugbase is re-branded as scip VulnDB and hosted on www.scip.ch.
Versión 2.0.0 (2002-09-01)
- Commit 51e87OptimizaciónChanged from static web site to dynamic database (with the kind support of DukeCS).
Versión 1.0.0 (1997-01-01)
- Commit 33e3bFuncionalidadBugbase project launch by Marc Ruef.