CVE - CI/CD Glossary Definition
A CVE is a standard public ID for a specific known security vulnerability.
A CVE (Common Vulnerabilities and Exposures) is a unique public identifier, formatted like CVE-2024-12345, assigned to a specific known security vulnerability so tools and teams can reference it consistently.
A CVE is a standard public ID for a specific known security vulnerability.
Why the identifier matters
Because every scanner references the same CVE ID, a finding in dependency scanning can be cross-checked, prioritized, and matched to a fixed version reliably.
Related guides
Vulnerability - CI/CD Glossary DefinitionVulnerability: A vulnerability is a weakness in software, configuration, or design that an attacker can explo…
CVSS - CI/CD Glossary DefinitionCVSS: CVSS (Common Vulnerability Scoring System) is an open standard that rates the severity of a vulnerabili…
Common Weakness Enumeration (CWE) - CI/CD Glossary DefinitionCommon Weakness Enumeration (CWE): CWE is a community-maintained catalog of software and hardware weakness ty…