Important Notice: Our web hosting provider recently started charging us for additional visits, which was unexpected. In response, we're seeking donations. Depending on the situation, we may explore different monetization options for our Community and Expert Contributors. It's crucial to provide more returns for their expertise and offer more Expert Validated Answers or AI Validated Answers. Learn more about our hosting issue here.

How does NVD assign impact types to vulnerabilities?

assign impact nvd types vulnerabilities
0
Posted

How does NVD assign impact types to vulnerabilities?

0 CommentsAdd a Comment

1 Answer

0

NVD assigns vulnerabilities the following impact types: confidentiality (“allows unauthorized disclosure of information”), integrity (“allows unauthorized modification”), availability (“allows disruption of service”), and security protection (“provides unauthorized access”). The “provides unauthorized access” category refers to getting some sort of general privileges in the application or entire computer (e.g., getting “root access” or an application account). This category has three possible subcategorizations: one for user level access to the operating system, another for getting administrator privileges, and another for some other type of privileged access.

0 CommentsAdd a Comment

Related Questions

What is your question?

*Sadly, we had to bring back ads too. Hopefully more targeted.

Experts123