Microsoft Switzerland Security Blog

Security informations brought to you by the Swiss Security Team.

Common Vulnerability Scoring System (CVSS) Explained

Common Vulnerability Scoring System (CVSS) Explained

  • Comments 1
  • Likes

The Common Vulnerability Scoring System, or CVSS for short, is the first and only open framework for scoring the risk associated with vulnerabilities. CVSS is designed to rank information system vulnerabilities and provide an end user with a composite score representing the overall severity and risk the vulnerability presents. CVSS was created by The National Infrastructure Advisory Council (NIAC). Over the years it has become a very widely adopted scoring system and is used by such heavy hitters as the Department of Homeland Security, CERT, Cisco, Union Pacific, and Symantec to name but a few. CVSS is currently maintained by the Forum of Incident Response and Security Teams (FIRST), http://www.first.org, and was a combined effort involving many companies, including:

CERT/CC
Cisco Systems
eBay
Internet Security Systems
Microsoft
DHS/MITRE
Qualys
Symantec

http://www.networkworld.com/community/node/21105

Urs

 

Comments
  • nedvizhimost sdayu tomsk nedvizhimost sdayu tomsk <a href="http://omegaflat.com/">nedvizhimost sdayu tomsk</a> nedvizhimost sdayu tomsk nedvizhimost sdayu tomsk nedvizhimost sdayu tomsk

Your comment has been posted.   Close
Thank you, your comment requires moderation so it may take a while to appear.   Close
Leave a Comment