!16 修改漏洞公告模板

Merge pull request !16 from louis.liuxu/master

!16 修改漏洞公告模板
Merge pull request !16 from louis.liuxu/master
c5779fcb · mamingshuai · Gitee · 26734c4d · 4996ab41 · 26734c4d
6 changed file
--- a/en/security-disclosure/2020/.keep
+++ b/en/security-disclosure/2020/.keep
--- a/en/security-disclosure/2020/2020-09.md
+++ b/en/security-disclosure/2020/2020-09.md
-## Security Vulnerabilities in September 2020
-
-**OpenHarmony security vulnerability in September: **
-| Vulnerability ID                             | Type    | Description                                                         |
-| -------------------------------------- | ------- | ------------------------------------------------------------ |
-| SEC-xxx-xxx                 | Private |   |
--- a/en/security-disclosure/security_announcement_template/YYYY-MM.md
+++ b/en/security-disclosure/security_announcement_template/YYYY-MM.md
+## Security Vulnerabilities in MM YYYY
+_published MM DD,YYYY_<br/>
+_updated MM DD,YYYY_
+
+| Vulnerability ID | related Vulnerability | Vulnerability Description | Vulnerability Impact | CVSS3.1 Base Score | affected versions | affected projects| fix link | reference |
+| -------- |-------- | -------- | -------- | ----------- | ----------- | -------- | ------- | ------- |
+|OpenHarmony-SA-YYYY-MMXX | CVE-YYYY-XXXXX| XX lead a XX vulnerability during XX. | XX attackers can lead a XX attack to XX.| X.X |XX through YY<br/>XX through YY<br/>XX through YY|XX|[XX](https://XXX)<br/>[YY](https://XXX)<br/>[ZZ](https://XXX) |Reported by XX|
+### The following table lists the third-party library vulnerabilities with only the CVE, severity, and affected OpenHarmony versions provided. For more details, see the security bulletins released by third-parties.
+
+| CVE | severity | affected OpenHarmony versions | fix link |
+| --- | -------- | ---------------------- | ------- |
+| CVE-YYYY-XXXXX  | Critical/High/Medium/Low | XX through YY<br/>XX through YY | [XX](https://XXX)<br/>[YY](https://XXX) |
\ No newline at end of file
--- a/zh/security-disclosure/2020/.keep
+++ b/zh/security-disclosure/2020/.keep
--- a/zh/security-disclosure/2020/2020-09.md
+++ b/zh/security-disclosure/2020/2020-09.md
-## 2020年9月安全漏洞
-
-**OpenHarmony软件9月份安全漏洞：**
-| 漏洞编号                             | 类型    | 说明                                                         |
-| -------------------------------------- | ------- | ------------------------------------------------------------ |
-| SEC-xxx-xxx                 | Private |   |
--- a/zh/security-disclosure/漏洞公告模板/YYYY-MM.md
+++ b/zh/security-disclosure/漏洞公告模板/YYYY-MM.md
+## YYYY年MM月安全漏洞
+_发布于YYYY.MM.DD_<br/>
+_最后更新于YYYY.MM.DD_
+
+| 漏洞编号 | 相关漏洞 | 漏洞描述 | 漏洞影响 | CVSS3.1基础得分 | 受影响的版本 | 受影响的仓库 | 修复链接 | 参考链接 |
+| -------- |-------- | -------- | -------- | ----------- | ----------- | -------- | ------- | ------- |
+|OpenHarmony-SA-YYYY-MMXX | CVE-YYYY-XXXXX | XX时存在XX漏洞。 | 攻击者可在XX内发起攻击，对XX发起XX攻击，导致XX。| X.X |XX到YY<br/>XX到YY<br/>XX到YY|XXX|[XX](https://XXX)<br/>[YY](https://XXX)<br/>[ZZ](https://XXX) |XX上报|
+### 以下为三方库漏洞，只提供CVE、严重程度、受影响的OpenHarmony版本，详细信息请参考三方公告。
+
+| CVE | 严重程度 | 受影响的OpenHarmony版本 | 修复链接 |
+| --- | -------- | ---------------------- | ------- |
+| CVE-YYYY-XXXXX  | 严重/高/中/低 | XX到YY<br/>XX到YY | [XX](https://XXX)<br/>[YY](https://XXX) |
\ No newline at end of file