Common Vulnerability Scoring System News

Common Vulnerability Scoring System Newshttp://www.first.org/newsroom/news/cvss.htmlCVSS proposes an open and universal vulnerability scoring system to address and solve the lack of cohesion and interoperability among vendor-specific ones, resulting on the promotion of a common language to discuss vulnerability severity and impact.FIRST.org, Inc© 1995-2008 by FIRST.org, Inc.Mon, 07 Jul 2008 18:43:00 +0100Fri, 16 Jul 2010 15:13:50 +0100Tecnodesignen-us20Common Vulnerability Scoring System Newshttp://www.first.org/newsroom/news/cvss.htmlhttp://www.first.org/_images/first-news.pngCVSS-SIG successful working meeting during the 20th annual FIRST conferencehttp://www.first.org/cvss/meeting_agenda_20080623.html firstnews:40330The Common Vulnerability Scoring System Special Interest Group (CVSS- SIG) had a very busy and successful working meeting during the 20th annual FIRST conference in Vancouver. We covered many of the CVSS use cases post v2 deployment - namely PCI and S-CAP - thanks for all the great participation.Mon, 07 Jul 2008 18:43:00 +0100FIRST CVSS-SIG meeting, Vancouver 2008http://www.first.org/meetings/cvss/firstnews:40262The Common Vulnerability Scoring System Special Interest Group (CVSS-SIG) has scheduled a working meeting during the 20th annual FIRST conference in Vancouver (June 22-27,2008). This meeting will take place on Monday, June 23rd 08:30-10:30 PSTFri, 20 Jun 2008 20:17:00 +0100New Scoring System Protects Credit Card Transactionshttp://www.first.org/newsroom/globalsecurity/sql101.htmlfirstnews:34564ScienceDaily As this year's holiday season approaches, your credit card transactions may be a little more secure thanks to standards adopted by the payment card industry. The latest incarnation of these standards include the Common Vulnerability Scoring System (CVSS) Version 2 that was coauthored this year by researchers at the National Institute of Standards and Technology and Carnegie Mellon University in collaboration with 23 other organizationsSun, 11 Nov 2007 13:34:00 +0100The Common Vulnerability Scoring System (CVSS) and Its Applicability to Federal Agency Systemshttp://www.first.org/cvss/cvss_applicability.htmlfirstnews:97NIST IR 7435 is published as final. CVSS provides an open framework for communicating the characteristics and impacts of IT vulnerabilities. Fri, 31 Aug 2007 16:41:00 +0100CVSS Version 2 Scoring with Nessus and the Passive Vulnerability Scannerhttp://blog.tenablesecurity.com/2007/07/cvss-version-2-.htmlfirstnews:92On Wednesday, August 15th, 2007, Tenable Network Security will begin converting CVSS base scores for Nessus and the Passive Vulnerability Scanner (PVS) plugins from version 1 to version 2. This blog entry discusses how some of the plugin severity...Thu, 19 Jul 2007 15:22:00 +0100CVSS Version 2 Scoring with Nessus and the Passive Vulnerability Scannerhttp://www.first.org/newsroom/globalsecurity/sql92.htmlfirstnews:34565On Wednesday, August 15th, 2007, Tenable Network Security will begin converting CVSS base scores for Nessus and the Passive Vulnerability Scanner (PVS) plugins from version 1 to version 2. This blog entry discusses how some of the plugin severity...Thu, 19 Jul 2007 15:22:00 +0100A revised vulnerability rating system gains steamhttp://searchwinit.techtarget.com/originalContent/0,289142,sid1_gci1263306,00.htmlfirstnews:91A standardized system to rank computer system vulnerabilities has been revised to help IT managers make better decisions more quickly about potential threats [SearchWinIt.com]Mon, 09 Jul 2007 21:00:00 +0100A revised vulnerability rating system gains steamhttp://www.first.org/newsroom/globalsecurity/sql91.htmlfirstnews:34566A standardized system to rank computer system vulnerabilities has been revised to help IT managers make better decisions more quickly about potential threats [SearchWinIt.com]Mon, 09 Jul 2007 21:00:00 +0100New tool for testing application securityhttp://computerworld.com/action/article.do?command=viewArticleBasic&articleId=9025760firstnews:89Standards-based system to rate vulnerabilities [Computerworld]Tue, 26 Jun 2007 17:00:00 +0100New tool for testing application securityhttp://www.first.org/newsroom/globalsecurity/sql89.htmlfirstnews:34567Standards-based system to rate vulnerabilities [Computerworld]Tue, 26 Jun 2007 17:00:00 +0100NIST releases FISMA security control toolshttp://www.gcn.com/online/vol1_no1/44331-1.htmlfirstnews:77The National Institute of Standards and Technology has released a suite of tools to help automate vulnerability management and evaluate compliance with federal IT security requirements.Thu, 21 Jun 2007 05:24:00 +0100NIST releases FISMA security control toolshttp://www.first.org/newsroom/globalsecurity/sql77.htmlfirstnews:34568The National Institute of Standards and Technology has released a suite of tools to help automate vulnerability management and evaluate compliance with federal IT security requirements.Thu, 21 Jun 2007 05:24:00 +0100National Vulnerability Database Version 2.0 - NVD Now Supports CVSS Version 2.0 (June 20, 2007)!!http://nvd.nist.gov/cvss.cfmfirstnews:76NVD is the U.S. government repository of standards based vulnerability management data represented using the Security Content Automation Protocol (SCAP). This data enables automation of vulnerability management, security measurement, and compliance.Wed, 20 Jun 2007 22:00:00 +0100National Vulnerability Database Version 2.0 - NVD Now Supports CVSS Version 2.0 (June 20, 2007)!!http://www.first.org/newsroom/globalsecurity/sql76.htmlfirstnews:34569NVD is the U.S. government repository of standards based vulnerability management data represented using the Security Content Automation Protocol (SCAP). This data enables automation of vulnerability management, security measurement, and compliance.Wed, 20 Jun 2007 22:00:00 +0100Flaw grading system graduates to next versionhttp://www.securityfocus.com/brief/531firstnews:75The Forum of Incident Response and Security Teams (FIRST) announced on Wednesday a revised version of the Common Vulnerability Scoring System (CVSS), which modifies the ranking system's recipe for judging the severity of software flaws.Wed, 20 Jun 2007 20:00:00 +0100Flaw grading system graduates to next versionhttp://www.first.org/newsroom/globalsecurity/sql75.htmlfirstnews:34570The Forum of Incident Response and Security Teams (FIRST) announced on Wednesday a revised version of the Common Vulnerability Scoring System (CVSS), which modifies the ranking system's recipe for judging the severity of software flaws.Wed, 20 Jun 2007 20:00:00 +0100New version of Common Vulnerability Scoring System releasedhttp://www.first.org/newsroom/releases/20070620-1.htmlfirstnews:71Seville Spain June 20, 2007: Millions of computer users worldwide will enjoy more secure virtual experiences and transactions with the advent today of CVSSv2 the latest version of the Common Vulnerability Scoring System.Wed, 20 Jun 2007 02:00:00 +0100Magic Numbers or Snake Oil? The Common Vulnerability Scoring Systemhttp://www.heise-security.co.uk/articles/89049firstnews:66Can a single number sum up the full significance of a security vulnerability? The CVSS attempts to prove that it can, but it has its weak points.Wed, 30 May 2007 15:15:00 +0100Magic Numbers or Snake Oil? The Common Vulnerability Scoring Systemhttp://www.first.org/newsroom/globalsecurity/sql66.htmlfirstnews:34571Can a single number sum up the full significance of a security vulnerability? The CVSS attempts to prove that it can, but it has its weak points.Wed, 30 May 2007 15:15:00 +0100CVSS Scores and Calculatorshttp://www.first.org/cvss/scores.htmlfirstnews:42Several sites provide easy ways to get CVSS scores. The major ones are listed on the SIG website.Fri, 01 Dec 2006 14:25:00 +0100