VINCE is the Vulnerability Information and Coordination Environment developed and used by the CERT Coordination Center to improve coordinated vulnerability disclosure. VINCE is a Python-based web platform.
ixed bug that interfered in certain circumstances with the operation of the vendor filter button on the VINCEComm case page Dependabot update recommendations: urllib3 1.26.12 to 1.26.18 Fixed bug that obstrcuted case assignment process for VINCETrack users with identical preferred usernames Adjusted code for asynchronous loading on ticket page to ensure it works on all ticket pages, including case request tickets Set up periodic autorefresh feature for VINCE Track ticket page Reformulated misleading UI labels for case transfer request process Resolved Issue by simpifying/correcting search code & disambiguating labels in report views Added AI/ML systems checkbox to public & VINCE Comm vul report form, routing of AI/ML-related tickets
Full Changelog: https://github.com/CERTCC/VINCE/compare/v2.1.2...v2.1.5
cryptography
39.0.1 to 41.0.0, requests
2.281 to 2.31.0, django-ses
from 3.2.2 to 3.5.0Version 2.1.1 2023-05-02
marquee
, command
and style
tags from supported markdown_helpers lib.vince.markdown_helpers - reported by VINCE user.Full Changelog: https://github.com/CERTCC/VINCE/compare/v2.0.6...v2.0.7
CVEAffectedProduct.version_affected
vince models.py
for CVE5JSONnewcomment
not new_comment
in vince/views.py
Full Changelog: https://github.com/CERTCC/VINCE/compare/v2.0.5...v2.0.6
Also includes changes from 2.0.4 2022-12-20
Full Changelog: https://github.com/CERTCC/VINCE/compare/v2.0.3...v2.0.5
Full Changelog: https://github.com/CERTCC/VINCE/compare/v1.50.6...v2.0.3
Full Changelog: https://github.com/CERTCC/VINCE/compare/v1.50.5...v1.50.6
settings_.py
to match public GitHubFull Changelog: https://github.com/CERTCC/VINCE/compare/v1.50.4...v1.50.5