How to Describe Vulnerability Information?:

JPCERT/CC receives software vulnerability information from domestic and overseas reporters, then coordinates them in between the vendor/developer and the reporter. While there is a vulnerability reporting template, vulnerability itself is described in a free format. Reporter can describe about a vulnerability in a way they like. From a vulnerability coordinator's perspective, the following are a few obstacles that we are facing:

1. It is necessary to "understand" the technical aspects

2. When the vulnerability description is written in your non-native language, it can be extremely difficult to comprehend

(Via JPCERT/CC Blog)

Read on for more. I support these activities, especially how to deal in multi-lingual ways.



My original entry is here: How to Describe Vulnerability Information?. It posted Mon, 11 Jun 2018 03:18:20 +0000.

Filed under: business, tech,