all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

When writing pen test reports, do you see a real benefit including cvss score vs just using high, medium, low severity?

Add to bookmarks
Dec. 31, 2023, 9:07 p.m. | /u/ascetik

cybersecurity www.reddit.com

Since most pen test reports go directly to developers and/or app owners that don’t have a real security background, I feel the cvss score does not really have any meaning to them. I see the benefit to the assessor to keep a unified vulnerability ranking but just don’t quite see the usefulness of including the score in the report.

app cvss cvss score cybersecurity developers don high low medium pen pen test real reports score security severity test writing

Visit resource

More from www.reddit.com / cybersecurity

What invention in cybersecurity would make a person rich today if they made it? 6 hours ago | www.reddit.com
cybersecurity invention today
Cybercriminals Strike UnitedHealth Millions of Patient Records Compromised, Ripple Effects Felt Nationwide 8 hours ago | www.reddit.com
compromised cybercriminals cybersecurity millions +5
Meetings!! 12 hours ago | www.reddit.com
can ciso cybersecurity life +3
Why is Penetration Testing so hard to get into? 14 hours ago | www.reddit.com
can change check comments +12
Source: Military intelligence carries out cyberattack on Russia's 1C Company 14 hours ago | www.reddit.com
cyberattack cybersecurity intelligence military +1
Is there any point in a Cyber Security degree anymore? 14 hours ago | www.reddit.com
back college cyber cyber security +7
How visible do you set your profile on LinkedIn? 15 hours ago | www.reddit.com
college computer computer science current +15
Is there currently a downturn in hiring? 15 hours ago | www.reddit.com
cybersecurity downturn hiring
Over 50,000 Tinyproxy servers vulnerable to critical RCE flaw 16 hours ago | www.reddit.com
critical cybersecurity flaw rce +3

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Technical Product Manager, Electronic Warfare - Active Clearance

@ Anduril | Costa Mesa, California, United States
View on infosec-jobs.com

Specialist Operations and Support/ Entry Professional - IT Security, Cyber Security & Governance

@ Norsk Hydro | Jaipur, IN
View on infosec-jobs.com

Embedded Software Engineer, Electronic Warfare

@ Anduril | Costa Mesa, California, United States
View on infosec-jobs.com

Cyber Security Analyst

@ Peraton | Chantilly, VA, United States
View on infosec-jobs.com

Principal Consultant, Proactive Security - Unit 42

@ Palo Alto Networks | Sydney, Australia
View on infosec-jobs.com

Penetration Tester Consultant

@ RSI Security | United States - Remote
View on infosec-jobs.com
View more jobs