From the course: Vulnerability Management: Assessing the Risks with CVSS v3.1
Join today to access over 22,600 courses taught by industry experts or purchase this course individually.
How remediation level affects risk
From the course: Vulnerability Management: Assessing the Risks with CVSS v3.1
How remediation level affects risk
- An important factor in determining the risk of vulnerability poses, is actually related to the fix or the Remediation Level. And that makes sense. If you have a problem, you want to be able to fix it. And if you can't, that's probably not a good thing. In the CVSs calculation, there are a few defined values. Five to be exact. That range from no fix, which is the highest risk to an Official Fix, which is lowest risk. The values of Not Defined and Unavailable or weighted the same in the CVSs formula. And that means that either there's no fix available at all, or you just don't know if the fix exists, This is the highest risk since there's no way to reduce the risk the vulnerability poses. Security is a game of cat and mouse sometimes, where the hackers always seem to be a few steps ahead. Sometimes you see news reports about a vulnerability that's being actively exploited, and there's no fix available. And that's mainly…
Download courses and learn on the go
Watch courses on your mobile device without an internet connection. Download courses using your iOS or Android LinkedIn Learning app.