Severity does not match the schema

Several vulnerabilities are labeled as using CVSS v4, but their scores are actually calculated with CVSS v3.

Examples:
GHSA-fpcr-4rr5-hpcp https://github.com/github/advisory-database/blob/f682ffc7bfaf69c4557910e0857534aa8ca5b377/advisories/github-reviewed/2022/05/GHSA-fpcr-4rr5-hpcp/GHSA-fpcr-4rr5-hpcp.json#L13-L14
GHSA-34cx-hvm4-vx7j https://github.com/github/advisory-database/blob/f682ffc7bfaf69c4557910e0857534aa8ca5b377/advisories/github-reviewed/2022/05/GHSA-34cx-hvm4-vx7j/GHSA-34cx-hvm4-vx7j.json#L13-L14

Provide feedback

Saved searches

Use saved searches to filter your results more quickly

Severity does not match the schema #6813

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

	"type": "CVSS_V4",
	"score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N"

	"type": "CVSS_V4",
	"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H"

Severity does not match the schema #6813

Description

Metadata

Metadata

Assignees

Labels

Type

Projects

Milestone

Relationships

Development

Issue actions