MITRE provided a list of vulnerabilities with overall CVSS score and description for each of them with examples. RankIDNameScore [1] CWE-119 Improper Restriction of Operations within the Bounds of a Memory Buffer 75.56 [2] CWE-79 Improper Neutralization of Input During Web Page Generation (‘Cr...
得分公式中的另一个组成部分是漏洞的严重性,它由比对到CWE的所有CVE的平均CVSS得分来表示,下面的公式用于计算该值: Sv(CWE_X)=(average_CVSS_for_CWE_X-min(CVSS))/(max(CVSS)-min(CVSS)) 然后,通过将严重程度得分乘以频率得分来确定CWE所呈现的危险等级。 Score(CWE_X)=Fr(CWE_X)*Sv(CWE_X)*100 该...
Sv(CWE_X) = (average_CVSS_for_CWE_X - min(CVSS)) / (max(CVSS) - min(CVSS)) At the end, the final score is calculated by multiplying the frequency of mention by the severity score. Score(CWE_X) = Fr(CWE_X) * Sv(CWE_X) * 100 In general, the methodology of data analysis h...
It is also classified under the more general CWE-200: Information Exposure weakness. In addition, it has been given an CVSS Score of 6.4. With this in place, you can augment the information being provided by the Acunetix scanner and hence improve your ability and speed in responding to and...