CSOonline

Security researchers find deep flaws in CVSS vulnerability scoring system

Cybersecurity experts from financial giant JPMorganChase say the cybersecurity community is being misled about the severity of vulnerabilities by the CVSS, which threatens to seriously hinder ...
Network World

Understanding the Common Vulnerability Scoring System (CVSS)

Understanding the Common Vulnerability Scoring System (CVSS) Analysis Jun 9, 2008 4 mins You may have noticed over the last couple years that Cisco has been sending out its PSIRT e-mails with a Common ...
CSO Online

Vulnerability prioritization beyond the CVSS number

A vulnerability in a tightly isolated sandbox may score a 9.8 but never affect anything else. Meanwhile, a 5.2 in a single ...
InfoWorld

Major companies team on vulnerability rating system

Leading IT companies including Cisco Systems, Microsoft , and Symantec are promoting a rating system that will standardize the measurement of the severity of software vulnerabilities. A plan for the ...
Dark Reading

When Patching Security Flaws, Smarter Trumps Faster

Organizations that use the Common Vulnerability Scoring System (CVSS) to prioritize the patching of software security vulnerabilities reduce their potential exploitability compared with randomly ...
Security Boulevard

JFrog Researchers Uncover RCE Exploit for Existing Redis Database Vulnerability

JFrog this week published an analysis of a vulnerability in Redis databases that may be more serious than initially thought following the discovery of a ...
Infosecurity-magazine.com

Beyond the Score: Rethinking Vulnerability Management in a Contextual Era

Picture the scenario: you log into your vulnerability management dashboard on a Monday morning. The scan ran overnight, and the report lights up with a dozen new high-severity CVEs. One stands out ...
SiliconANGLE

Tenable enhances vulnerability rating system with AI to improve risk prioritization

Network security company Tenable Holdings Inc. today unveiled an artificial intelligence-powered update to its Vulnerability Priority Rating system, designed to help organizations better identify and ...
Dark Reading

3 Lessons Learned in Vulnerability Management

As we pass the first anniversary of the Log4j vulnerability disclosure, it's a timely reminder that when a vulnerability is serious, it deserves our utmost attention. Organizations taking ...
Forbes

The Importance Of Understanding Vulnerability Management Frameworks To Prioritize Security Responses

JP oversees the Research and Innovation teams that keep Onapsis on the cutting-edge of the business-critical application security market. The world runs on enterprise resource planning (ERP) ...
TechRepublic

Top 3 tips to identify quality vulnerability intelligence

Vulnerability intelligence tools can be very useful to prioritize the key threats security professionals need to take action on for their organization, but it’s important to remember that some are ...