CVSS - Shortcomings, Faults, and Failures

1 | P a g e The CVSSv2 shortcomings , Faults, and Failures Formulation Subject: An Open Letter to FIRST From: Carsten Eiram, Risk Based Security and Brian Martin, Open Security Foundation This is an open letter to FIRST regarding the upcoming common vulnerability scoring system (CVSS) version 3 proposal. While we have not been formally asked to provide input, given our time spent in the world of vulnerability databases and the security industry, along with our extensive use of CVSS in scoring vulnerabilities, we feel we may provide valuable insight and hopefully help to address the shortcomings , faults, and Failures of CVSSv2.

The CVSSv2 Shortcomings, Faults, and Failures Formulation Subject: An Open Letter to FIRST From: Carsten Eiram, Risk Based Security and Brian Martin, Open Security Foundation This is an open letter to FIRST regarding the upcoming Common Vulnerability Scoring System (CVSS) version 3 proposal.

Tags:

  System, Vulnerability, Failure, Scoring, Common, Shortcomings, Fault, Svcs, Cvss shortcomings, And failures, Common vulnerability scoring system

Information