CVE Vulnerability Research for 70 Open Source + Commercial Runtime Software Libraries
$250-750 USD
Paid on delivery
*** this is not a penetration test - this is vulnerability research project involving vulnerability database research and data tabulation into a spreadsheet ***
We are doing a security review of 70 software libraries that our organization depends on. The libraries are a mix of Open Source software libraries and Commercial Runtime software libraries
We are looking to hire someone who can review the entire list of software libraries, and cross-check each individual library against the NIST National Vulnerability Database for published Security Vulnerabilities (CVE's).
** please note: a penetration test of each library is not required - no physical software / libraries will be provided. Only a list naming each library and its version number that we need cross checked against the National Vulnerability DB **.
The results of the research within the national vulnerability database need to be summarised in a spreadsheet and include links to each CVE that you found from the Database for that library and its base score.
The CVE's found for each library and associated links must be categorised into severity level.
The results should be compiled into a spreadsheet which we will give you a template for.
Care will need to be taken to ensure the precise library we list is what the associated CVE's you find are related to. e.g. If list a specific JPEG library and version, we are looking to understand every CVE for that library version that exists, but not every CVE out there that has something to do with a Jpeg (as there would be thousands of hits and not very useful to us).
Project ID: #32629163
About the project
14 freelancers are bidding on average $582 for this job
Hello, I am Cyber Security Expert and ready to check CVE from NIST database vulnerabilities and report you the actual worth one. Kindly share with me all libraries 70+ open-source. Thank you
Hey there, I have been in the InfoSec for years. I have the required skills and experience. I can conduct a security review of the 70 software libraries that your organization depends on. Regards!
Hi there, I have read your project description and i'm confident i can do this project for you perfectly.I still have a few questions. please leave a message on my chat so we can discuss the budget and deadline of the More
Hi. Let me introduce myself. I am an Information Security Expert with real world hands on experience, graduate level education, and active industry certifications. Currently I am employed in a private firm as a cyber More
Hi Bro, I have 3+ years of experience in penetration testing including Web Application penetration testing; System Application penetration testing; Mobile application penetration testing; Network application penetratio More
Hello, I am a person with five years of experience in research writing who writes, analyzes, summarizes, and presents it in an easy and understandable way. I combine all the pieces of evidence and proofs about the pro More
Hello Client! I am delighted to apply for the position of Research Analyst. As someone who is highly analytical, I enjoy sifting through information in order to discover and extract what is most important in a given se More
Greetings, the tasks explanation from this project are very clear, so I can help you with this CVE's analysis and classification. I have more than 15 experience years in different roles in cyber security and it can he More
