mirror of
https://github.com/docker/docs.git
synced 2026-04-12 06:19:22 +07:00
Chris Chinchilla
@@ -70,9 +70,9 @@ Artifactory](https://docs.docker.com/scout/artifactory/).
|
||||
|
||||
Many other tools use fuzzy [Common Product Enumeration
|
||||
(CPE)](https://en.wikipedia.org/wiki/Common_Platform_Enumeration) matching with
|
||||
wild cards to attempt to match potential vulnerabilities in packages and
|
||||
operating systems. This can return a lot of false positives which you need to
|
||||
triage.
|
||||
wild cards to known vulnerabilities with the versions of software packages they affect.
|
||||
This can return a lot of false positives which you need to triage.
|
||||
|
||||
|
||||
The typical structure of a CPE match looks like this:
|
||||
|
||||
|
||||
Reference in New Issue
Block a user