Skip to content
This repository has been archived by the owner on May 20, 2020. It is now read-only.

Duplicated CVE & CPE results #7

Open
nilp0inter opened this issue Aug 9, 2018 · 0 comments
Open

Duplicated CVE & CPE results #7

nilp0inter opened this issue Aug 9, 2018 · 0 comments

Comments

@nilp0inter
Copy link

Patton returns duplicated CPE in the same query and sometimes duplicated CVE for the same CPE.

An example of duplicated CPE:

$ patton django:1.9.1
+--------------+-----------------------------------+---------------------+
| Name         | CPEs                              | CVEs                |
+--------------+-----------------------------------+---------------------+
| django:1.9.1 | cpe:/a:djangoproject:django:1.9.1 | CVE-2016-9013 (7.5) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-9014 (6.8) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-2048 (6.0) |
|              |                                   | ------------------- |
|              |                                   | CVE-2017-7233 (5.8) |
|              |                                   | ------------------- |
|              |                                   | CVE-2017-7234 (5.8) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-7401 (5.0) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-2512 (4.3) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-6186 (4.3) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-2513 (2.6) |
|              | --------------------------------- | ------------------- |
|              | cpe:/a:djangoproject:django:1.9.1 | CVE-2016-9013 (7.5) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-9014 (6.8) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-2048 (6.0) |
|              |                                   | ------------------- |
|              |                                   | CVE-2017-7233 (5.8) |
|              |                                   | ------------------- |
|              |                                   | CVE-2017-7234 (5.8) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-7401 (5.0) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-2512 (4.3) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-6186 (4.3) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-2513 (2.6) |
|              | --------------------------------- | ------------------- |
|              | cpe:/a:djangoproject:django:1.9.1 | CVE-2016-9013 (7.5) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-9014 (6.8) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-2048 (6.0) |
|              |                                   | ------------------- |
|              |                                   | CVE-2017-7233 (5.8) |
|              |                                   | ------------------- |
|              |                                   | CVE-2017-7234 (5.8) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-7401 (5.0) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-2512 (4.3) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-6186 (4.3) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-2513 (2.6) |
|              | --------------------------------- | ------------------- |
|              | cpe:/a:djangoproject:django:1.9.1 | CVE-2016-9013 (7.5) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-9014 (6.8) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-2048 (6.0) |
|              |                                   | ------------------- |
|              |                                   | CVE-2017-7233 (5.8) |
|              |                                   | ------------------- |
|              |                                   | CVE-2017-7234 (5.8) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-7401 (5.0) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-2512 (4.3) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-6186 (4.3) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-2513 (2.6) |
|              | --------------------------------- | ------------------- |
|              | cpe:/a:djangoproject:django:1.9.1 | CVE-2016-9013 (7.5) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-9014 (6.8) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-2048 (6.0) |
|              |                                   | ------------------- |
|              |                                   | CVE-2017-7233 (5.8) |
|              |                                   | ------------------- |
|              |                                   | CVE-2017-7234 (5.8) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-7401 (5.0) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-2512 (4.3) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-6186 (4.3) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-2513 (2.6) |
|              | --------------------------------- | ------------------- |
|              | cpe:/a:djangoproject:django:1.9.1 | CVE-2016-9013 (7.5) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-9014 (6.8) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-2048 (6.0) |
|              |                                   | ------------------- |
|              |                                   | CVE-2017-7233 (5.8) |
|              |                                   | ------------------- |
|              |                                   | CVE-2017-7234 (5.8) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-7401 (5.0) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-2512 (4.3) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-6186 (4.3) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-2513 (2.6) |
|              | --------------------------------- | ------------------- |
|              | cpe:/a:djangoproject:django:1.9.1 | CVE-2016-9013 (7.5) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-9014 (6.8) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-2048 (6.0) |
|              |                                   | ------------------- |
|              |                                   | CVE-2017-7233 (5.8) |
|              |                                   | ------------------- |
|              |                                   | CVE-2017-7234 (5.8) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-7401 (5.0) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-2512 (4.3) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-6186 (4.3) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-2513 (2.6) |
|              | --------------------------------- | ------------------- |
|              | cpe:/a:djangoproject:django:1.9.1 | CVE-2016-9013 (7.5) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-9014 (6.8) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-2048 (6.0) |
|              |                                   | ------------------- |
|              |                                   | CVE-2017-7233 (5.8) |
|              |                                   | ------------------- |
|              |                                   | CVE-2017-7234 (5.8) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-7401 (5.0) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-2512 (4.3) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-6186 (4.3) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-2513 (2.6) |
|              | --------------------------------- | ------------------- |
|              | cpe:/a:djangoproject:django:1.9.1 | CVE-2016-9013 (7.5) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-9014 (6.8) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-2048 (6.0) |
|              |                                   | ------------------- |
|              |                                   | CVE-2017-7233 (5.8) |
|              |                                   | ------------------- |
|              |                                   | CVE-2017-7234 (5.8) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-7401 (5.0) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-2512 (4.3) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-6186 (4.3) |
|              |                                   | ------------------- |
|              |                                   | CVE-2016-2513 (2.6) |
+--------------+-----------------------------------+---------------------+

An example of duplicated CVE:

$ patton django:1.8.2
+--------------+-----------------------------------+----------------------+
| Name         | CPEs                              | CVEs                 |
+--------------+-----------------------------------+----------------------+
| django:1.8.2 | cpe:/a:djangoproject:django:1.8.2 | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              | --------------------------------- | -------------------- |
|              | cpe:/a:djangoproject:django:1.8.2 | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              | --------------------------------- | -------------------- |
|              | cpe:/a:djangoproject:django:1.8.2 | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              | --------------------------------- | -------------------- |
|              | cpe:/a:djangoproject:django:1.8.2 | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              | --------------------------------- | -------------------- |
|              | cpe:/a:djangoproject:django:1.8.2 | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              | --------------------------------- | -------------------- |
|              | cpe:/a:djangoproject:django:1.8.2 | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              | --------------------------------- | -------------------- |
|              | cpe:/a:djangoproject:django:1.8.2 | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              | --------------------------------- | -------------------- |
|              | cpe:/a:djangoproject:django:1.8.2 | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              | --------------------------------- | -------------------- |
|              | cpe:/a:djangoproject:django:1.8.2 | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              | --------------------------------- | -------------------- |
|              | cpe:/a:djangoproject:django:1.8.2 | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
|              |                                   | -------------------- |
|              |                                   | CVE-2018-7536 (None) |
+--------------+-----------------------------------+----------------------+
Sign up for free to subscribe to this conversation on GitHub. Already have an account? Sign in.
Assignees
No one assigned
Labels
None yet
Projects
None yet
Milestone
No milestone
Development

No branches or pull requests
1 participant
@nilp0inter