The Vulnerability Metrics: They are a Changin’!
The Common Vulnerability Scoring System, used by Cisco, Qualys, and Symantec since 2005, will be moving to its third iteration next year, aiming to make the rankings more objective and add more ratings to increase accuracy. Though infotex does not use this system, we believe that some IT Auditors are using it and thus we want to give you a heads up that the methods are changing. We believe the changes will improve the deliverables from audit firms using the CVSS system.
Original article by Robert Lemos.
Read the full story here.