CVE with critical CVSS flagged severity Moderate

[dugdug36]

Hello,
I found some CVE tagged with moderate severity which one are cvss3 : "9.8".

I know its not directly linked to your github but I don't know where I should ask.

https://access.redhat.com/labs/securitydataapi/cve/CVE-2020-1747.json
cvss3_base_score":"9.8"
threat_severity":"Moderate"

Thanks in advance,
Best regards

@Fryguy @eschabell @starryeyez024 @ryran @biyiklioglu

[biyiklioglu]

Hi,

You can find the details of the CVE here: https://access.redhat.com/security/cve/CVE-2020-1747
Impact and CVSS scores are two different methods of classification and not directly related to each other.
They are clearly explained at https://access.redhat.com/security/updates/classification/

If you still have questions you should reach the Red Hat Product Security Team as described here: https://access.redhat.com/security/team/contact/

HTH