|
Work item:
|
X.1521 (ex X.cvss)
|
|
Subject/title:
|
Common vulnerability scoring system 3.0
|
|
Status:
|
Approved on 2016-03-23
|
|
Approval process:
|
TAP
|
|
Type of work item:
|
Recommendation
|
|
Version:
|
Rev.
|
|
Equivalent number:
|
-
|
|
Timing:
|
-
|
|
Liaison:
|
FIRST
|
|
Supporting members:
|
-
|
|
Summary:
|
Recommendation ITU-T X.1521 on the common vulnerability scoring system (CVSS) provides an open framework for communicating the characteristics and impacts of information and communication technologies (ICT) vulnerabilities in the commercial or open source software used in communications networks, end user devices, or any of the other types of ICT capable of running software. The goal of the Recommendation is to enable ICT managers, vulnerability bulletin providers, security vendors, application vendors and researchers to speak from a common language of scoring ICT vulnerabilities.
|
|
Comment:
|
Technically aligned with FIRST CVSS 3.0.
|
|
Reference(s):
|
|
|
Historic references:
|
|
Contact(s):
|
|
| ITU-T A.5 justification(s): |
|
|
|
|
First registration in the WP:
2015-09-21 15:24:54
|
|
Last update:
2016-04-01 16:25:34
|
