CVSS3.0打分学习

打分计算器:

Common Vulnerability Scoring System Version 3.0 Calculator: https://www.first.org/cvss/calculator/3.0

 

打分导图:

 Scoring Rubric

The scoring rubric provides a quick reference to scoring vulnerabilities in v3.0. It is meant to supplement existing scoring discussion found in the Specification Document.

Return to table of contents

1. Attack Vector

Attack Vector

Return to table of contents

2. Attack Complexity

Attack Complexity

Return to table of contents

3. Privileges Required

Privileges Required

Return to table of contents

4. User Interaction

User Interaction

Return to table of contents

5. Scope

Scope

Note, if Scope change has not occurred, Confidentiality, Integrity and Availability impacts reflect consequence to the vulnerable component, otherwise they reflect consequence to the component that suffers the greater impact.

Return to table of contents

6. Confidentiality Impact

Confidentiality Impact

Return to table of contents

7. Integrity Impact

Integrity Impact

Return to table of contents

8. Availability Impact

Availability Impact

原文地址:https://www.cnblogs.com/cqufengchao/p/6596338.html