得分公式中的另一个组成部分是漏洞的严重性,它由比对到CWE的所有CVE的平均CVSS得分来表示,下面的公式用于计算该值: Sv(CWE_X)=(average_CVSS_for_CWE_X-min(CVSS))/(max(CVSS)-min(CVSS)) 然后,通过将严重程度得分乘以频率得分来确定CWE所呈现的危险等级。 Score(CWE_X)=Fr(CWE_X)*Sv(CWE_X)*100 该...
Sv(CWE_X) = (average_CVSS_for_CWE_X - min(CVSS)) / (max(CVSS) - min(CVSS)) At the end, the final score is calculated by multiplying the frequency of mention by the severity score. Score(CWE_X) = Fr(CWE_X) * Sv(CWE_X) * 100 In general, the methodology of data analysis h...
CWE Top 25 List MITRE provided a list of vulnerabilities with overall CVSS score and description for each of them with examples. The CWE’s calculated by MITRE, based on a scoring formula, the vulnerabilities that are common and cause high impact will receive a high score. Related Read Source...