CVSS
Common Vulnerability Scoring System
The Common Vulnerability Scoring System is a standardized framework for rating the severity of security vulnerabilities on a 0-10 scale. CVSS scores factor in exploitability, impact, and environmental context to produce a numeric severity rating (None, Low, Medium, High, Critical).
Como é usado em cibersegurança
Security engineers use CVSS scores to prioritize which vulnerabilities to patch first based on severity and exploitability. GRC analysts set SLA thresholds tied to CVSS ratings, requiring critical findings to be remediated within defined timeframes. CISOs reference CVSS metrics in risk reports to communicate vulnerability exposure to executive leadership.
Termo relacionado no glossário: common vulnerability scoring system
As definições são explicações originais escritas para fins de desenvolvimento profissional. Para definições técnicas autoritativas, consulte NIST, ISO ou o órgão de normalização correspondente.