Hacker News new | ask | show | jobs
by mnd999 1990 days ago
> The current state of CVEs and CVE scanning is that you'll have to wrangle with bullshit security reports if you run any nontrivial software.

Especially if you have customers who outsourced their infosec to the lowest bidder who insist every BS CVE is critical and must be fixed.
1 comments
whydoyoucare 1990 days ago
This ^^^. I have experienced it first hand for the last year or so, and it gets really annoying!
link