CVSSskalor - Infinite Lexicon - Infinite Lexicon

CVSSskalor

CVSSskalor is a term used to describe the scales or metrics within the Common Vulnerability Scoring System (CVSS) that are used to rate the severity of software vulnerabilities. The concept emphasizes that vulnerability severity is derived from multiple factors organized into distinct metric groups, which together produce a single numeric score and a qualitative severity label.

Base metrics capture the inherent characteristics of a vulnerability. They consider how it can be exploited

Temporal metrics reflect factors that can change over time. They include how easily the vulnerability can be

Environmental metrics tailor scores to a specific environment. They allow weighting of security requirements for confidentiality,

CVSS scales yield a numeric score and a qualitative severity category, typically None, Low, Medium, High, and

a

confidentiality,

a

(Exploitability),

a

a

vulnerabilities