Managing private vulnerabilities

Dependency-Track includes a built-in private vulnerability repository for managing vulnerabilities that are not (yet) publicly documented. For field definitions and matching behaviour, see the private vulnerability repository reference.

Creating a vulnerability

Navigate to Vulnerabilities in the sidebar and click Create Vulnerability.

The VULNERABILITY_MANAGEMENT permission is required to create and modify internal vulnerabilities.