Vulnerability Management
Common Vulnerability Scoring System (CVSS)
A standard for rating the severity of security vulnerabilities.
CVSS assigns a numeric score (0-10) to vulnerabilities based on exploitability, impact, and complexity. Scores map to severity: None (0), Low (0.1-3.9), Medium (4.0-6.9), High (7.0-8.9), Critical (9.0-10.0). Used to prioritize patching efforts.