<div dir="ltr">Hi,<div><br></div><div>Anyone knows of an alternative to the nvd db?</div><div><br>Specifically NVD is used by many to obtain the CVSS Score assigned to a CVE, is there somewhere this information can be obtained from?<br>
<br><div class="gmail_quote">On Wed, Mar 13, 2013 at 10:45 PM, Jake Kouns <span dir="ltr"><<a href="mailto:jkouns@opensecurityfoundation.org" target="_blank">jkouns@opensecurityfoundation.org</a>></span> wrote:<br>
<blockquote class="gmail_quote" style="margin:0 0 0 .8ex;border-left:1px #ccc solid;padding-left:1ex">
It seems like NVD has been having trouble with availability for the<br>
last several weeks. How many outage have they had and what is the<br>
total duration at this point?<br>
<div class="HOEnZb"><div class="h5"><br>
On Wed, Mar 13, 2013 at 4:35 PM, Christey, Steven M. <<a href="mailto:coley@mitre.org">coley@mitre.org</a>> wrote:<br>
> As VIM subscribers probably know, the National Vulnerability Database<br>
><br>
> (NVD) is having a temporary outage. At <a href="http://nvd.nist.gov/" target="_blank">http://nvd.nist.gov/</a>, NIST<br>
><br>
> says "We are working to restore service as quickly as possible."<br>
><br>
><br>
><br>
> Many people rely on NVD feeds to learn about newly-updated CVEs. The<br>
><br>
> CVE web site does not provide such feeds, since that would duplicate<br>
><br>
> NVD functionality.<br>
><br>
><br>
><br>
> However, the CVE project sends notification emails for newly-updated<br>
><br>
> CVEs to a limited set of CVE-compatible users, often several times a<br>
><br>
> day. Until NVD service is reliably restored, I will be posting these<br>
><br>
> "CVENEW" messages to the Vulnerability Information Managers (VIM)<br>
><br>
> list. While they do not contain the extra data that NVD provides,<br>
><br>
> such as CVSS and CPE names, hopefully this will help some people to<br>
><br>
> monitor new CVEs.<br>
><br>
><br>
><br>
> Note that the VIM list is not the place to post general vulnerability<br>
><br>
> announcements; it is specifically designed for maintainers of<br>
><br>
> vulnerability databases and information services.<br>
><br>
><br>
><br>
><br>
><br>
> Regards,<br>
><br>
> Steve Christey<br>
><br>
> CVE Editor<br>
><br>
><br>
</div></div></blockquote></div><br><br clear="all"><div><br></div>-- <br>Thanks,<div>Noam Rathaus</div><div>Beyond Security</div>
</div></div>