[
Date Prev][
Date Next][
Thread Prev][
Thread Next][
Date Index][
Thread Index]
RE: Should be a CVE?
I agree.
Regards,
Beverly M Finch, PMP
PSIRT Program Manager
Product Security Office
7001 Development Drive
Office 3N-C1
Morrisville, NC 27560
+1 919 294 5873
beverlyfinch@lenovo.com
Lenovo.com
Twitter | Facebook | Instagram | Blogs | Forums
-----Original Message-----
From: owner-cve-editorial-board-list@lists.mitre.org
[mailto:owner-cve-editorial-board-list@lists.mitre.org] On Behalf Of
Waltermire, David A. (Fed)
Sent: Tuesday, September 12, 2017 3:20 PM
To: cve-editorial-board-list@lists.mitre.org
Subject: Should be a CVE?
Looking at the following, it appears that a CVE was issued for the
potential that someone might upgrade software to a vulnerable version,
which has another CVE. I don't think this should qualify as a CVE,
given the actual vulnerability already has one.
http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-5698
Should this CVE be rejected?
Regards,
Dave