CVSS scores are not enough for modern cybersecurity defense


cvss-score.jpg

Symantec

Relying on CVSS scores to estimate the risk to security may be placing individuals and the enterprise at greater risk than believed, researchers say.

The Common Vulnerability Scoring System (CVSS) is a way to document and measure a software vulnerability’s risk factors. CVSS has undergone a number of

... read more at: http://www.zdnet.com/article/cvss-scores-are-not-enough-for-modern-security/