Common Vulnerability Scoring System (CVSS)
The Common Vulnerability Scoring System (CVSS) provides a way to capture the principal characteristics of a vulnerability and produce a numerical score reflecting its severity. The numerical score can then be translated into a qualitative representation (such as low, medium, high, and critical) to help organizations properly assess and prioritize their vulnerability management processes.
CVSS at FIRST.orgCVSS Specifications
- CVSS v4.0 Specification
- https://www.first.org/cvss/v4.0/specification-document
- CVSS v3.1 Specification
- https://www.first.org/cvss/v3.1/specification-document
- CVSS v3.0 Specification
- https://www.first.org/cvss/v3.0/specification-document
- CVSS v2.0 Complete Guide
- https://www.first.org/cvss/v2/guide