From 5fe11e67793b9508a0fe4fe8f0b6ec5bd358cdd0 Mon Sep 17 00:00:00 2001
From: "Karsten W. Rohrbach" <karsten@rohrbach.de>
Date: Mon, 28 Sep 2020 10:20:04 +0200
Subject: [PATCH] Use NVD 1.1 feed

NVD 1.0 feed is no longer available which seems to break classification of finding criticality.

Signed-off-by: Karsten W. Rohrbach <karsten@rohrbach.de>
---
 ext/vulnmdsrc/nvd/nvd.go | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/ext/vulnmdsrc/nvd/nvd.go b/ext/vulnmdsrc/nvd/nvd.go
index a17a24849a..6ed05ab2eb 100644
--- a/ext/vulnmdsrc/nvd/nvd.go
+++ b/ext/vulnmdsrc/nvd/nvd.go
@@ -39,8 +39,8 @@ import (
 )
 
 const (
-	dataFeedURL     string = "https://nvd.nist.gov/feeds/json/cve/1.0/nvdcve-1.0-%s.json.gz"
-	dataFeedMetaURL string = "https://nvd.nist.gov/feeds/json/cve/1.0/nvdcve-1.0-%s.meta"
+	dataFeedURL     string = "https://nvd.nist.gov/feeds/json/cve/1.1/nvdcve-1.1-%s.json.gz"
+	dataFeedMetaURL string = "https://nvd.nist.gov/feeds/json/cve/1.1/nvdcve-1.1-%s.meta"
 
 	appenderName string = "NVD"