Hi,
We have NVD integration active for Vulnerability Response and other third-party scanners (Rapid7 & Wiz).
When we look into the NVD table (sn_vul_nvd_entry), we see that some of the CVEs have source populated as the Third-party and some have empty source.
See below screenshot for example.
Is this suppose to happen? If yes, what exactly is happening? Why would some entries have empty source?
