Sveriges mest populära poddar

Open Source Security Podcast

Episode 201 - We broke CVSSv3, now how do we fix it?

31 min • 15 juni 2020

Josh and Kurt talk about CVSSv3 and how it's broken. We started with a blog post to explain why the NVD CVSS scores are so wrong, and we ended up researching CVSSv3 and found out it's far more broken than any of us expected in ways we didn't expect. NVD isn't broken, CVSSv3 is. How did we get here? Are there any options that work today? Where should we go next?

Show Notes
Kategorier
Förekommer på
00:00 -00:00