CVSS Archives

Hot Topics

Cradlepoint Adds SASE Platform for 5G Wireless Networks
BTS #28 - 5G Hackathons - Casey Ellis
CCPA Compliance with Accutive Data Discovery and Masking: Understanding and protecting your sensitive data
USENIX Security ’23 - Token Spammers, Rug Pulls, and Sniper Bots: An Analysis of the Ecosystem of Tokens in Ethereum and in the Binance Smart Chain (BNB)
USENIX Security ’23 - Token Spammers, Rug Pulls, and Sniper Bots: An Analysis of the Ecosystem of Tokens in Ethereum and in the Binance Smart Chain (BNB)

Veeam data Rezilion Spring4Shell Log4j vulnerabilities time Kaseya ransomware recovery REvil

Rezilion: Devs Wasting Time on Wrong Cybersecurity Vulnerabilities

Michael Vizard | July 26, 2023 | cisa, CVE, CVSS, Cybersecurity, KEVs, Rezilion, Vulnerabilities

A Rezilion report argued most organizations are wasting their limited remediation resources on vulnerabilities that may never be exploited ...

Security Boulevard

CVSS + EPSS + KEV: Why You Need All Three to Effectively Manage Vulnerabilities

rezilion | July 26, 2023 | CISA KEV, Common Vulnerability Scoring System, CVSS, epss, KEV, Known Exploited Vulnerabilities (KEV), Uncategorized, Vulnerability Management

Security and development teams know that managing vulnerabilities is complex and challenging. The ultimate aim of a vulnerability management program is to minimize the organization’s overall risk exposure by identifying, prioritizing, and ...

Rezilion

Rezilion Uncovers High-Risk Vulnerabilities Missing from CISA KEV Catalog, Challenging Current Patching Prioritization Standards

rezilion | July 26, 2023 | CISA KEV, CVSS, epss, Exploitability Probability Prediction Score, Known Exploited Vulnerabilities (KEV), Uncategorized, Vulnerability Management, vulnerability prioritization

NEW YORK, July 26, 2023 – Rezilion, an automated software supply chain security platform, today announced a new report, “CVSS, EPSS, KEV: The New Acronyms – And The Intelligence – You Need ...

Rezilion

EPSS Vs CVSS: How Do They Compare?

Esther Shein | June 29, 2023 | Common Vulnerability Scoring System, CVSS, epss, Exploit Prediction Scoring System, Uncategorized, Vulnerability Management

The tech industry loves its acronyms and one that is grabbing attention these days is the Exploit Prediction Scoring System (EPSS). Since many people are more familiar with the Common Vulnerability Scoring ...

Rezilion

vulnerability management, risk-based, vulnerabilities third-party supply chain Okta endpoint security

Stop Naming Vulnerabilities – Just Stop

Mark Nunnikhoven | May 5, 2022 | CVE, CVSS, Cybersecurity, Vulnerabilities

Attention online is fleeting. To make a splash, the feeling is that you need to say outlandish things and the algorithms for the major social networks and search engines reinforce these behaviors ...

Security Boulevard

CWE Top 25: 2020 v. 2021

Katie Horne | August 25, 2021 | AppSec, cv, CVSS, CWE, Software Security

Image by Lawrence Monk from Pixabay.In our previous post, we have mentioned that the Common Weakness Enumeration (CWE) list can be long and daunting to look at when you’re first getting started. As ...

ShiftLeft Blog - Medium

A Brief Introduction to CWEs

Katie Horne | August 19, 2021 | AppSec, CVE, CVSS, CWE, software

Image by Werner Moser from Pixabay.In the upcoming weeks, we will be releasing a series of blog posts focusing on the Common Weakness Enumeration, a list of security vulnerability types. We will begin ...

ShiftLeft Blog - Medium

The Dangers of Security Vulnerability Scoring Dependency

SecurityExpert | December 8, 2020 | COVID-19, CVSS, cyberis, enterprise security, MITRE, patching, Vulnerability Management

Article by Nathan King, Director, CyberisVulnerability scoring has an important role in most enterprise threat and vulnerability management programmes because it provides multiple benefits to internal security teams when identifying any weaknesses ...

IT Security Expert Blog

Understanding Vulnerability Scoring: CVSS Explained

Guest Author | May 12, 2020 | CVSS, Cybersecurity, Infrastructure, Network Security, security, vulnerability

The post Understanding Vulnerability Scoring: CVSS Explained appeared first on CCSI ...

CCSI

What Does the New CVSS 3.1 Scoring Model Mean for Enterprise Security?

Akshay 'Ax' Sharma | February 17, 2020 | Application Security, CVSS, enterprise, nvd, Open Source Security, Post security/devsecops, security, Vulnerabilities

With thousands of security vulnerabilities reported each month in products ranging from hardware devices to firmware to popular software apps, how does one prioritise what needs the most attention? From a business ...

Sonatype Blog