Forum Replies Created

Viewing 2 posts - 1 through 2 (of 2 total)
  • Author
    Posts
  • January 9, 2025 at 7:12 am in reply to: Is Patch Prioritization Based on CVSS Scores Alone Misleading? #6317
    Samhith
    Participant

      I’m not saying throw it out, but relying solely on CVSS can be misleading. For example, take a high-severity vulnerability in a system that’s isolated and heavily firewalled. It’s less urgent than a medium-severity issue in a core business application.

      January 6, 2025 at 7:44 am in reply to: Is Patch Prioritization Based on CVSS Scores Alone Misleading? #6315
      Samhith
      Participant

        That’s true but it’s not the full picture. CVSS scores lacks context. A high CVSS score doesn’t necessarily mean the vulnerability poses a significant risk in every environment. Misprioritizing based on scores alone can waste resources.

      • Author
        Posts
      Viewing 2 posts - 1 through 2 (of 2 total)