Using CVSS to quantitatively analyze risks to software caused by
vulnerabilities

Using CVSS to quantitatively analyze risks to software caused by vulnerabilities

Quantitative methods for evaluating and managing software security are becoming reliable with the ever increasing vulnerability datasets. The Common Vulnerability Scoring System (CVSS) provides a way to quantitatively evaluate individual vulnerability. However it cannot be applied to evaluate softwa...

Full description

Bibliographic Details
Main Authors:	Gao Jian-Bo, Zhang Bao-Wen, Chen Xiao-Hua
Format:	Article
Language:	English
Published:	EDP Sciences 2015-01-01
Series:	MATEC Web of Conferences
Online Access:	http://dx.doi.org/10.1051/matecconf/20153116004

Similar Items

A look at the time delays in CVSS vulnerability scoring
by: Jukka Ruohonen
Published: (2019-07-01)

A computational method based on CVSS for quantifying the vulnerabilities in computer network
by: Shahriyar Mohammadi, et al.
Published: (2014-10-01)

SHA512 and MD5 Algorithm Vulnerability Testing Using Common Vulnerability Scoring System (CVSS)
by: Fahmi Basya, et al.
Published: (2022-01-01)

Quantitative Model of Attacks on Distribution Automation Systems Based on CVSS and Attack Trees
by: Erxia Li, et al.
Published: (2019-07-01)

Predicting CVSS Metric via Description Interpretation
by: Joana Cabral Costa, et al.
Published: (2022-01-01)

Support for the Vulnerability Management Process Using Conversion CVSS Base Score 2.0 to 3.x
by: Maciej Roman Nowak, et al.
Published: (2023-02-01)

XLNet-Based Prediction Model for CVSS Metric Values
by: Fan Shi, et al.
Published: (2022-09-01)

Web resource security analysis based on CVSS metrics
by: Sh. R. Davlatov, et al.
Published: (2020-09-01)

Computerized value stream system (CVSS) to reduce waste in lean manufacturing operation
by: Hasan, S., et al.
Published: (2015)

Development and Phenotype of Heart Failure in Long‐Term Survivors of Childhood Cancer: The CVSS Study
by: Sebastian Göbel, et al.
Published: (2023-10-01)

Computerized value stream system (CVSS) untuk mengurangi limbah pada operasi lean manufaktur
by: Hasan, Sulaiman, et al.
Published: (2015)

An Approach to Analyze Vulnerability of Information Flow in Software Architecture
by: Tingyang Gu, et al.
Published: (2020-01-01)

PEMERINGKATAN RISIKO KEAMANAN SISTEM JARINGAN KOMPUTER POLITEKNIK KOTA MALANG MENGGUNAKAN CVSS DAN FMEA
by: Betta Wahyu Retna Mulya, et al.
Published: (2018-08-01)

Cuestionario CVSS17 y vigilancia de la salud de trabajadores profesionalmente expuestos a pantallas de visualización
by: Josep María Molina-Aragonés, et al.

Five levels of performance and two subscales identified in the computer-vision symptom scale (CVSS17) by Rasch, factor, and discriminant analysis.
by: Mariano González-Pérez, et al.
Published: (2018-01-01)

Cuestionario CVSS17 y vigilancia de la salud de trabajadores profesionalmente expuestos a pantallas de visualización
by: Josep María Molina-Aragonés, et al.
Published: (2018-12-01)

Listing causes of risk of vulnerability and abandonment
by: María Luisa Santamaría Pérez
Published: (2016-11-01)

The Historical Relationship between the Software Vulnerability Lifecycle and Vulnerability Markets: Security and Economic Risks
by: Abdullah M. Algarni
Published: (2022-09-01)

The rise of software vulnerability: Taxonomy of software vulnerabilities detection and machine learning approaches
by: Hazim, Hanif, et al.
Published: (2021)

Automated Risk Management Based Software Security Vulnerabilities Management
by: Raghavendra Rao Althar, et al.
Published: (2022-01-01)

Modeling and Characterizing Software Vulnerabilities
by: Navneet Bhatt, et al.
Published: (2017-12-01)

Measuring the Cost of Software Vulnerabilities
by: Afsah Anwar, et al.
Published: (2020-06-01)

Vulnerability of Russian regions to natural risk: experience of quantitative assessment
by: E. Petrova
Published: (2006-01-01)

Analyzing web application vulnerability tests using Firewall/Intrusion Detection System
by: Neoh, Jia Wen.
Published: (2013)

DFAulted: Analyzing and Exploiting CPU Software Faults Caused by FPGA-Driven Undervolting Attacks
by: Dina G. Mahmoud, et al.
Published: (2022-01-01)

Hardware verification using software analyzers
by: Mukherjee, R, et al.
Published: (2015)

An Approach for Analyzing the Vulnerability of Small Family Businesses
by: Lisa Cowan, et al.
Published: (2016-01-01)

Quantitative Vulnerability Assessment of Cyber Security for Distribution Automation Systems
by: Xiaming Ye, et al.
Published: (2015-06-01)

Using Fuzz Testing for Searching Software Vulnerabilities
by: Bogdan Leonidovich Kozirsky, et al.
Published: (2014-12-01)

Mitigating Vulnerabilities in Closed Source Software
by: Zhen Huang, et al.
Published: (2022-08-01)

1C software vulnerabilities description
by: Ivanov Oleg, et al.
Published: (2017-01-01)

Stochastic software testing for vulnerability analysis
by: Andrey O. Maneev, et al.
Published: (2021-12-01)

Analyzing Risk Premiums in the Brazilian Power Market: A Quantitative Study
by: Tarjei Kristiansen
Published: (2023-11-01)

A Software Vulnerability Management Framework for the Minimization of System Attack Surface and Risk
by: Panagiotis Sotiropoulos, et al.
Published: (2023-05-01)

Analyzing Ecological Vulnerability and Vegetation Phenology Response Using NDVI Time Series Data and the BFAST Algorithm
by: Jiani Ma, et al.
Published: (2020-10-01)

Analyzing mechanical and software solutions in their patents
by: Villarruel, Nicolas R
Published: (2007)

Analyzing compute-intensive software performance
by: Gupta, Neeraj
Published: (2007)

Quantitative monitoring method for analyzing the erosion of a landslide dam discharge channel using three-dimensional terrestrial laser scanning
by: Nan Jiang, et al.
Published: (2021-01-01)

Smile Analyzer: A Software Package for Analyzing the Characteristics of the Speech and Smile
by: Farzin Heravi, et al.
Published: (2012-09-01)

Analyzing the instructions vulnerability of dense convolutional network on GPUS
by: Khalid, Adam, et al.
Published: (2021)