Feedback open until 31 of August for CVSS 4.0(www.first.org)

posted 1 year ago

N7x@infosec.pub

appsec@infosec.pub

2 commentshide report

Sort:

Hot Top Controversial New Old

You are viewing a single thread.

View all comments

[ - ]

mwguy@infosec.pub

1 point

1 year ago

I get why they’re doing it. But the truth is that there are still places using CVSS 2.0 to grade their vulnerabilities. The switch to CVSS 4.0 is going to take forever unless there’s some conversion logic from 3->4.

permalink

report

[ - ]

N7x@infosec.pubOP

1 point

1 year ago

That’s kind of legacy debt at some point. I understand why they still want to move towards evolving the standard

permalink

report

parent

appsec

!appsec@infosec.pub

Create post

A community for all things related to application security.

Community stats

1
Monthly active users
98
Posts
27
Comments

Community moderators

laszlok@infosec.pub