Overview
Watch a 52-minute LASCON conference talk exploring the latest iteration of the Common Vulnerability Scoring System (CVSS) version 4, its adoption in InfoSec, and significance for the Open Source community. Delve into CVSS's crucial role in vulnerability risk management and risk prioritization while examining persistent challenges in the field. Learn how to optimize scoring effectiveness and consider potential solutions within the broader cybersecurity context. Engage with comprehensive insights into vulnerability assessment's evolving landscape, fostering discussions about future developments in vector-based risk management for open-source vulnerabilities. Discover practical approaches to addressing current limitations while contemplating critical questions about the future of vulnerability scoring systems.
Syllabus
Mário Teixeira - CVSS v4 – A Better Version of an Imperfect Solution
Taught by
LASCON