CVSS

A study out of Germany has highlighted shortcomings in the CVSS system and the way security vulnerabilities are assessed and scored

Shaun Nichols September 01, 2023

cyber risk

News

cybersecurity

CVSS 4.0 aims for greater clarity on cybersecurity risk -- adds OT, response components

New metrics for Operational Technology exposure include whether the "consequences of the vulnerability meet definition of IEC 61508 consequence categories of "marginal," "critical," or "catastrophic."

The Stack June 19, 2023

Academics warn over "problematic metrics and documentation" in CVSS system

CVSS 4.0 aims for greater clarity on cybersecurity risk -- adds OT, response components