Open Source Vulnerability Database: Difference between revisions

Browse history interactively

← Previous edit

Content deleted Content added

VisualWikitext

Revision as of 17:16, 23 September 2024 edit Citation bot (talk \| contribs) Bots 5,863,355 edits Altered url. URLs might have been anonymized. Add: archive-date, archive-url. Removed parameters. \| Use this bot. Report bugs. \| Suggested by Neko-chan \| #UCB_webform 44/500 ← Previous edit		Latest revision as of 01:37, 13 August 2025 edit undo InternetArchiveBot (talk \| contribs) Bots, Pending changes reviewers 5,674,738 edits Rescuing 0 sources and tagging 2 as dead.) #IABot (v2.0.9.5
(One intermediate revision by one other user not shown)
Line 7: The '''Open Sourced Vulnerability Database''' ('''OSVDB''') was an independent and open-sourced [[vulnerability database]]. The goal of the project was to provide accurate, detailed, current, and unbiased technical information on [[Information security\|security]] vulnerabilities.<ref>{{Cite web\|last=Rosencrance\|first=Linda\|date=2004-04-16\|title=Brief: Vulnerability database goes live\|url=https://www.computerworld.com/article/2563666/brief--vulnerability-database-goes-live.html\|access-date=2020-08-15\|website=Computerworld\|language=en}}</ref> The project promoted greater and more open collaboration between companies and individuals. The database's motto was "Everything is Vulnerable".<ref>{{cite web \|title=Biased software vulnerability stats praising Microsoft were 101% misleading \|url=https://www.csoonline.com/article/2226625/biased-software-vulnerability-stats-praising-microsoft-were-101--misleading.html \|accessdate=20 May 2020}}</ref> The core of OSVDB was a relational database which tied various information about security vulnerabilities into a common, cross-referenced [[open security]] data source. As of December 2013, the database cataloged over 100,000 vulnerabilities.<ref>{{cite web \|url=https://blog.osvdb.org/2014/01/20/we-hit-the-100000-mark/ \|title=We hit the 100,000 mark… \|date=20 January 2014 \|access-date=22 January 2020 }}{{Dead link\|date=August 2025 \|bot=InternetArchiveBot \|fix-attempted=yes }}</ref> While the database was maintained by a 501(c)(3) non-profit public organization and volunteers, the data was prohibited for commercial use without a license. Despite that, many large commercial companies used the data in violation of the license without contributing employee volunteer time or financial compensation.<ref>{{Cite web\|title=McAfee accused of McSlurping Open Source Vulnerability Database\|url=https://www.theregister.com/2014/05/08/whats_copyright_mcafee_mcslurps_vuln_database/\|access-date=2020-08-15\|website=www.theregister.com\|language=en}}</ref> ==History== Line 36: * Steve Tornio (Moderator) * Zach Shue (Moderator) * Alexander Koren a.k.a. ph0enix (Mangler) * Carsten Eiram a.k.a. Chep (Moderator) * Marlowe (Mangler) Line 48: == External links == * [https://blog.osvdb.org/ OSVDB Blog]{{Dead link\|date=August 2025 \|bot=InternetArchiveBot \|fix-attempted=yes }} * [https://www.riskbasedsecurity.com/ Risk Based Security]