all InfoSec news
SecScore: Enhancing the CVSS Threat Metric Group with Empirical Evidences
May 15, 2024, 4:11 a.m. | Miguel Santana, Vinicius V. Cogo, Alan Oliveira de S\'a
cs.CR updates on arXiv.org arxiv.org
Abstract: Background: Timely prioritising and remediating vulnerabilities are paramount in the dynamic cybersecurity field, and one of the most widely used vulnerability scoring systems (CVSS) does not address the increasing likelihood of emerging an exploit code. Aims: We present SecScore, an innovative vulnerability severity score that enhances CVSS Threat metric group with statistical models from empirical evidences of real-world exploit codes. Method: SecScore adjusts the traditional CVSS score using an explainable and empirical method that more …
address arxiv code cs.cr cvss cybersecurity cybersecurity field dynamic emerging exploit exploit code metric paramount remediating vulnerabilities score scoring severity systems threat vulnerabilities vulnerability
More from arxiv.org / cs.CR updates on arXiv.org
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Corporate Intern - Information Security (Year Round)
@ Associated Bank | US WI Remote
Senior Offensive Security Engineer
@ CoStar Group | US-DC Washington, DC