What is the purpose of applying the Common Vulnerability Scoring System (CVSS) to a vulnerability detected by a penetration test?
- to determine the priority of the vulnerability
- to determine the attack vector that applies to the vulnerability
- to accurately record how the vulnerability was detected
- to calculate the severity of the vulnerability
Explanation: The Common Vulnerability Scoring System (CVSS) is a widely adopted standard for calculating the severity of a given vulnerability using three components: base, temporal, and environmental scores.
Exam with this question: 3.5.3 Quiz - Information Gathering and Vulnerability Scanning Answers
Please login or Register to submit your answer