Security News > 2019 > September > Stop Using CVSS to Score Risk

Stop Using CVSS to Score Risk
2019-09-10 13:07

The mechanics of prioritizing one vulnerability’s business risk over another has always been fraught with concern. What began as securing business applications and infrastructure from full-disclosure bugs a couple of decades ago, has grown to encompass vaguely referenced flaws in insulin-pumps and fly-by-wire aircraft with lives potentially hanging in the balance. read more

News URL