The Community for Technology Leaders
Green Image
Issue No. 06 - November/December (2006 vol. 4)
ISSN: 1540-7993
pp: 85-89
Peter Mell , US National Institute of Standards and Technology
Sasha Romanosky , Carnegie Mellon University
Karen Scarfone , US National Institute of Standards and Technology
ABSTRACT
Vendors have historically used proprietary methods for scoring software vulnerabilities, usually without detailing their criteria or processes. The Common Vulnerability Scoring System (CVSS) is a public initiative designed to address this issue by presenting a framework for consistently and accurately assessing and quantifying software vulnerabilities' impact on organizations.
INDEX TERMS
vulnerability assessment, Common Vulnerabilities and Exposures, CVE, National Vulnerability Database, NVD
CITATION
Peter Mell, Sasha Romanosky, Karen Scarfone, "Common Vulnerability Scoring System", IEEE Security & Privacy, vol. 4, no. , pp. 85-89, November/December 2006, doi:10.1109/MSP.2006.145
101 ms
(Ver )