After my #CVSS blog post, what feels like two hundred persons have pointed out that the CVSS field is not mandatory in the CVE records. It is a clarification that does not add much. The reality is that users seem to want the scores so bad that CISA will add CVSS nonetheless, mandatory or not.
https://daniel.haxx.se/blog/2025/01/23/cvss-is-dead-to-us/
CVSS is dead to us
CVSS is short for Common Vulnerability Scoring System and is according to Wikipedia a technical standard for assessing the severity of vulnerabilities in computing systems.daniel.haxx.se
This entry was edited (3 months ago)
This website is tracked using the Matomo analytics tool. If you do not want that your visits are logged in this way you can set a cookie to prevent Matomo / Piwik from tracking further visits of the site (opt-out).
ggghfd
in reply to daniel:// stenberg:// • • •How TypedDict in Python Revolutionized My Coding Workflow
Resans Technologies Ltd (Blogger)