forgetful

A "gentle" reminder that the CVSS 4.0 public preview is open until July 31st. Go play with that calculator!

https://www.first.org/cvss/v4-0/

Common Vulnerability Scoring System

FIRST — Forum of Incident Response and Security Teams
Jul 3, 2023 at 9:15pmWeb
Show threadforgetfulOct 11, 2024
The whining time has come 😅 , here you can do it towards the ears of the CVSS SIG:
https://survey.alchemer.com/s3/8015778/CVSS
Show threadBilly O'NealJul 26, 2023
@forgetful @bagder have you given up all hope on making CVSS for curl make sense?
Show threaddaniel:// stenberg://Jul 26, 2023
@malwareminigun @forgetful I'm an optimist but I'm not sure changing CVSS actually changes much. A fundamental problem is still that there are several subjective "grades" in there and then you can go high or you can go low and we know how NVD will do it.
Show threadforgetfulJul 27, 2023
@bagder @malwareminigun Daniel if you have ideas to make the standard less open to interpretation the SIG will be happy to review your suggestions, however the rfc period is coming to an end in 4 days.
Show threaddaniel:// stenberg://Jul 27, 2023
@forgetful @malwareminigun thanks, but I don't have the bandwidth the get involved there...