Short description/ Transmitted information |
The Common Vulnerability Scoring System (CVSS) is an open framework for communicating the characteristics and severity of software vulnerabilities. CVSS consists of three metric groups: Base, Temporal, and Environmental. The Base group represents the intrinsic qualities of a vulnerability that are constant over time and across user environments, the Temporal group reflects the characteristics of a vulnerability that change over time, and the Environmental group represents the characteristics of a vulnerability that are unique to a user's environment. The Base metrics produce a score ranging from 0 to 10, which can then be modified by scoring the Temporal and Environmental metrics. A CVSS score is also represented as a vector string, a compressed textual representation of the values used to derive the score. |
---|---|
Normative document | |
Version/ Release state |
|
Release date |
|
Application scope |
|
Goals |
|
Promoting bodies |
|
Type |
|
IT Standard classification |
|
Data format |
|
Additional available resources |
|
Relevant prostep ivip project groups |
|
WEBINAR (EN/DE)
https://www.avl.com/en-at/webinars/model-based-and-automated-tara-staying-ahead-cyber-threats
https://www.avl.com/de-at/webinare/modelbasierte-automatisierte-tara-immer-schritt-voraus
Cybersecurity testing is paramount in today's automotive industry, especially in light of ISO/SAE 21434 to implement a cyber security by design approach. This standard necessitates comprehensive evaluation of automotive systems to identify vulnerabilities and ensure robust protection against cyber threats. Implementing effective cybersecurity testing methodologies is essential to safeguard both vehicles and passengers.