Class: CnaPublishedContainer
An object containing vulnerability information provided by a CVE Numbering Authority (CNA) for a published CVE ID. There can only be one CNA container per CVE record since there can only be one assigning CNA.
URI: cve:CnaPublishedContainer
classDiagram
class CnaPublishedContainer
click CnaPublishedContainer href "../CnaPublishedContainer/"
CnaContainer <|-- CnaPublishedContainer
click CnaContainer href "../CnaContainer/"
CnaPublishedContainer : affected
CnaPublishedContainer --> "1..*" AffectedProduct : affected
click AffectedProduct href "../AffectedProduct/"
CnaPublishedContainer : cna_source
CnaPublishedContainer --> "0..1" SourceInformation : cna_source
click SourceInformation href "../SourceInformation/"
CnaPublishedContainer : cna_tags
CnaPublishedContainer : configurations_text
CnaPublishedContainer --> "*" MultiLangDescription : configurations_text
click MultiLangDescription href "../MultiLangDescription/"
CnaPublishedContainer : cpe_applicability
CnaPublishedContainer --> "*" CpeApplicabilityElement : cpe_applicability
click CpeApplicabilityElement href "../CpeApplicabilityElement/"
CnaPublishedContainer : credits
CnaPublishedContainer --> "*" CreditEntry : credits
click CreditEntry href "../CreditEntry/"
CnaPublishedContainer : cve_references
CnaPublishedContainer --> "1..*" CveReference : cve_references
click CveReference href "../CveReference/"
CnaPublishedContainer : date_assigned
CnaPublishedContainer : date_public
CnaPublishedContainer : descriptions
CnaPublishedContainer --> "1..*" MultiLangDescription : descriptions
click MultiLangDescription href "../MultiLangDescription/"
CnaPublishedContainer : exploits
CnaPublishedContainer --> "*" MultiLangDescription : exploits
click MultiLangDescription href "../MultiLangDescription/"
CnaPublishedContainer : impacts
CnaPublishedContainer --> "*" ImpactEntry : impacts
click ImpactEntry href "../ImpactEntry/"
CnaPublishedContainer : metrics
CnaPublishedContainer --> "*" MetricEntry : metrics
click MetricEntry href "../MetricEntry/"
CnaPublishedContainer : problem_types
CnaPublishedContainer --> "*" ProblemType : problem_types
click ProblemType href "../ProblemType/"
CnaPublishedContainer : provider_metadata
CnaPublishedContainer --> "1" ProviderMetadata : provider_metadata
click ProviderMetadata href "../ProviderMetadata/"
CnaPublishedContainer : solutions
CnaPublishedContainer --> "*" MultiLangDescription : solutions
click MultiLangDescription href "../MultiLangDescription/"
CnaPublishedContainer : taxonomy_mappings
CnaPublishedContainer --> "*" TaxonomyMapping : taxonomy_mappings
click TaxonomyMapping href "../TaxonomyMapping/"
CnaPublishedContainer : timeline
CnaPublishedContainer --> "*" TimelineEntry : timeline
click TimelineEntry href "../TimelineEntry/"
CnaPublishedContainer : title
CnaPublishedContainer : workarounds
CnaPublishedContainer --> "*" MultiLangDescription : workarounds
click MultiLangDescription href "../MultiLangDescription/"
Inheritance
- CnaContainer
- CnaPublishedContainer
Slots
| Name | Cardinality and Range | Description | Inheritance |
|---|---|---|---|
| provider_metadata | 1 ProviderMetadata |
Details related to the information container provider (CNA or ADP) | direct |
| date_assigned | 0..1 Timestamp |
The date/time this CVE ID was associated with a vulnerability by a CNA | direct |
| date_public | 0..1 Timestamp |
If known, the date/time the vulnerability was disclosed publicly | direct |
| title | 0..1 String |
Short human-readable title or name for this entity | direct |
| descriptions | 1..* MultiLangDescription |
A list of multi-lingual descriptions of the vulnerability | direct |
| affected | 1..* AffectedProduct |
List of affected products and services | direct |
| cpe_applicability | * CpeApplicabilityElement |
Affected products defined using the CPE Applicability Language | direct |
| problem_types | * ProblemType |
Problem type information such as CWE identifiers | direct |
| cve_references | 1..* CveReference |
Reference data in the form of URLs describing the vulnerability, such as advi... | direct |
| impacts | * ImpactEntry |
Collection of impacts of this vulnerability, optionally linked to CAPEC IDs | direct |
| metrics | * MetricEntry |
Collection of impact scores with attribution (CVSSv2, CVSSv3 | direct |
| configurations_text | * MultiLangDescription |
Configurations required for exploiting this vulnerability | direct |
| workarounds | * MultiLangDescription |
Workarounds and mitigations for this vulnerability | direct |
| solutions | * MultiLangDescription |
Information about solutions or remediations available for this vulnerability | direct |
| exploits | * MultiLangDescription |
Information about known exploits of this vulnerability | direct |
| timeline | * TimelineEntry |
Timeline information for significant events about the vulnerability or change... | direct |
| credits | * CreditEntry |
Statements acknowledging specific people, organizations, or tools for work re... | direct |
| cna_source | 0..1 SourceInformation |
Source information (who discovered it, who researched it, etc | direct |
| cna_tags | * CNATag or String |
Tags provided by a CNA describing the CVE Record | direct |
| taxonomy_mappings | * TaxonomyMapping |
List of taxonomy items (e | direct |
Usages
| used by | used in | type | used |
|---|---|---|---|
| Containers | cna | any_of[range] | CnaPublishedContainer |
Identifier and Mapping Information
Schema Source
- from schema: https://w3id.org/lmodel/cve
Mappings
| Mapping Type | Mapped Value |
|---|---|
| self | cve:CnaPublishedContainer |
| native | cve:CnaPublishedContainer |
LinkML Source
Direct
name: CnaPublishedContainer
description: An object containing vulnerability information provided by a CVE Numbering
Authority (CNA) for a published CVE ID. There can only be one CNA container per
CVE record since there can only be one assigning CNA.
from_schema: https://w3id.org/lmodel/cve
is_a: CnaContainer
slots:
- provider_metadata
- date_assigned
- date_public
- title
- descriptions
- affected
- cpe_applicability
- problem_types
- cve_references
- impacts
- metrics
- configurations_text
- workarounds
- solutions
- exploits
- timeline
- credits
- cna_source
- cna_tags
- taxonomy_mappings
slot_usage:
provider_metadata:
name: provider_metadata
required: true
descriptions:
name: descriptions
required: true
affected:
name: affected
required: true
cve_references:
name: cve_references
required: true
Induced
name: CnaPublishedContainer
description: An object containing vulnerability information provided by a CVE Numbering
Authority (CNA) for a published CVE ID. There can only be one CNA container per
CVE record since there can only be one assigning CNA.
from_schema: https://w3id.org/lmodel/cve
is_a: CnaContainer
slot_usage:
provider_metadata:
name: provider_metadata
required: true
descriptions:
name: descriptions
required: true
affected:
name: affected
required: true
cve_references:
name: cve_references
required: true
attributes:
provider_metadata:
name: provider_metadata
description: Details related to the information container provider (CNA or ADP).
from_schema: https://w3id.org/lmodel/cve
aliases:
- providerMetadata
rank: 1000
alias: provider_metadata
owner: CnaPublishedContainer
domain_of:
- CnaPublishedContainer
- CnaRejectedContainer
- AdpContainer
range: ProviderMetadata
required: true
inlined: true
date_assigned:
name: date_assigned
description: The date/time this CVE ID was associated with a vulnerability by
a CNA.
from_schema: https://w3id.org/lmodel/cve
aliases:
- dateAssigned
rank: 1000
alias: date_assigned
owner: CnaPublishedContainer
domain_of:
- CnaPublishedContainer
range: Timestamp
date_public:
name: date_public
description: If known, the date/time the vulnerability was disclosed publicly.
from_schema: https://w3id.org/lmodel/cve
aliases:
- datePublic
rank: 1000
alias: date_public
owner: CnaPublishedContainer
domain_of:
- CnaPublishedContainer
- AdpContainer
range: Timestamp
title:
name: title
description: Short human-readable title or name for this entity.
in_subset:
- metadata
from_schema: https://w3id.org/lmodel/cve
exact_mappings:
- schema:name
close_mappings:
- kev_catalog:vulnerability_name
rank: 1000
slot_uri: dct:title
alias: title
owner: CnaPublishedContainer
domain_of:
- CnaPublishedContainer
- AdpContainer
- Vulnerability
range: string
descriptions:
name: descriptions
description: A list of multi-lingual descriptions of the vulnerability. Must contain
at least one English language entry. E.g., [PROBLEMTYPE] in [COMPONENT] in [VENDOR]
[PRODUCT] [VERSION] on [PLATFORMS] allows [ATTACKER] to [IMPACT] via [VECTOR].
from_schema: https://w3id.org/lmodel/cve
rank: 1000
alias: descriptions
owner: CnaPublishedContainer
domain_of:
- CnaPublishedContainer
- AdpContainer
range: MultiLangDescription
required: true
multivalued: true
inlined: true
inlined_as_list: true
affected:
name: affected
description: List of affected products and services.
from_schema: https://w3id.org/lmodel/cve
rank: 1000
alias: affected
owner: CnaPublishedContainer
domain_of:
- CnaPublishedContainer
- AdpContainer
range: AffectedProduct
required: true
multivalued: true
inlined: true
inlined_as_list: true
cpe_applicability:
name: cpe_applicability
description: Affected products defined using the CPE Applicability Language. When
defined, this block should align with the data in the affected block.
from_schema: https://w3id.org/lmodel/cve
aliases:
- cpeApplicability
rank: 1000
alias: cpe_applicability
owner: CnaPublishedContainer
domain_of:
- CnaPublishedContainer
- AdpContainer
range: CpeApplicabilityElement
multivalued: true
inlined: true
inlined_as_list: true
problem_types:
name: problem_types
description: Problem type information such as CWE identifiers. Must contain at
least one entry. Entries can be text, OWASP, or CWE identifiers.
from_schema: https://w3id.org/lmodel/cve
aliases:
- problemTypes
rank: 1000
alias: problem_types
owner: CnaPublishedContainer
domain_of:
- CnaPublishedContainer
- AdpContainer
range: ProblemType
multivalued: true
inlined: true
inlined_as_list: true
cve_references:
name: cve_references
description: Reference data in the form of URLs describing the vulnerability,
such as advisories, patches, and exploit details. Required by CNA rules.
from_schema: https://w3id.org/lmodel/cve
aliases:
- references
rank: 1000
alias: cve_references
owner: CnaPublishedContainer
domain_of:
- CnaPublishedContainer
- AdpContainer
range: CveReference
required: true
multivalued: true
inlined: true
inlined_as_list: true
minimum_cardinality: 1
maximum_cardinality: 512
impacts:
name: impacts
description: Collection of impacts of this vulnerability, optionally linked to
CAPEC IDs.
from_schema: https://w3id.org/lmodel/cve
rank: 1000
alias: impacts
owner: CnaPublishedContainer
domain_of:
- CnaPublishedContainer
- AdpContainer
range: ImpactEntry
multivalued: true
inlined: true
inlined_as_list: true
metrics:
name: metrics
description: Collection of impact scores with attribution (CVSSv2, CVSSv3.0, CVSSv3.1,
CVSSv4.0, or custom format).
from_schema: https://w3id.org/lmodel/cve
rank: 1000
alias: metrics
owner: CnaPublishedContainer
domain_of:
- CnaPublishedContainer
- AdpContainer
range: MetricEntry
multivalued: true
inlined: true
inlined_as_list: true
configurations_text:
name: configurations_text
description: Configurations required for exploiting this vulnerability.
from_schema: https://w3id.org/lmodel/cve
aliases:
- configurations
rank: 1000
alias: configurations_text
owner: CnaPublishedContainer
domain_of:
- CnaPublishedContainer
- AdpContainer
range: MultiLangDescription
multivalued: true
inlined: true
inlined_as_list: true
workarounds:
name: workarounds
description: Workarounds and mitigations for this vulnerability.
from_schema: https://w3id.org/lmodel/cve
rank: 1000
alias: workarounds
owner: CnaPublishedContainer
domain_of:
- CnaPublishedContainer
- AdpContainer
range: MultiLangDescription
multivalued: true
inlined: true
inlined_as_list: true
solutions:
name: solutions
description: Information about solutions or remediations available for this vulnerability.
from_schema: https://w3id.org/lmodel/cve
rank: 1000
alias: solutions
owner: CnaPublishedContainer
domain_of:
- CnaPublishedContainer
- AdpContainer
range: MultiLangDescription
multivalued: true
inlined: true
inlined_as_list: true
exploits:
name: exploits
description: Information about known exploits of this vulnerability.
from_schema: https://w3id.org/lmodel/cve
rank: 1000
alias: exploits
owner: CnaPublishedContainer
domain_of:
- CnaPublishedContainer
- AdpContainer
range: MultiLangDescription
multivalued: true
inlined: true
inlined_as_list: true
timeline:
name: timeline
description: Timeline information for significant events about the vulnerability
or changes to the CVE Record.
from_schema: https://w3id.org/lmodel/cve
rank: 1000
alias: timeline
owner: CnaPublishedContainer
domain_of:
- CnaPublishedContainer
- AdpContainer
range: TimelineEntry
multivalued: true
inlined: true
inlined_as_list: true
credits:
name: credits
description: Statements acknowledging specific people, organizations, or tools
for work related to research, discovery, remediation, or coordination of this
CVE.
from_schema: https://w3id.org/lmodel/cve
rank: 1000
alias: credits
owner: CnaPublishedContainer
domain_of:
- CnaPublishedContainer
- AdpContainer
range: CreditEntry
multivalued: true
inlined: true
inlined_as_list: true
cna_source:
name: cna_source
description: Source information (who discovered it, who researched it, etc.) and
optionally a chain of CNA information.
from_schema: https://w3id.org/lmodel/cve
aliases:
- source
rank: 1000
alias: cna_source
owner: CnaPublishedContainer
domain_of:
- CnaPublishedContainer
- AdpContainer
range: SourceInformation
inlined: true
cna_tags:
name: cna_tags
description: Tags provided by a CNA describing the CVE Record.
from_schema: https://w3id.org/lmodel/cve
aliases:
- tags
rank: 1000
alias: cna_tags
owner: CnaPublishedContainer
domain_of:
- CnaPublishedContainer
range: string
multivalued: true
any_of:
- range: CNATag
- range: string
pattern: ^x_.*$
taxonomy_mappings:
name: taxonomy_mappings
description: List of taxonomy items (e.g., ATT&CK, CWE) related to the vulnerability.
from_schema: https://w3id.org/lmodel/cve
aliases:
- taxonomyMappings
rank: 1000
alias: taxonomy_mappings
owner: CnaPublishedContainer
domain_of:
- CnaPublishedContainer
- AdpContainer
range: TaxonomyMapping
multivalued: true
inlined: true
inlined_as_list: true