 |
Post AvYUSOGfGUETsOjQzw by [email protected] |
 |
More posts by [email protected] |
|
Post #AvVUhaiAhOyTL5xyzo by [email protected] |
|
0 likes, 2 repeats |
|
|
|
remind me again why we bother with CVSSassigning them to issues and I swear ove… |
|
|
|
Post #AvVUhapcFivfiBRvbE by [email protected] |
|
0 likes, 0 repeats |
|
|
|
I'm being hyperbolic here of course but like... surely all of us who have b… |
|
|
|
Post #AvVUhavzs0281yR1Xs by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@gsuberland Yup.In my experience, and opinion: any generalized ranked listing o… |
|
|
|
Post #AvYRiaog4rt1Z9fwMS by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@gsuberland Am I the only one that thinks CVSS's criteria require a great d… |
|
|
|
Post #AvYRt2VbyLfKLfjrbk by [email protected] |
|
0 likes, 1 repeats |
|
|
|
@gsuberland I guess what I'm saying is that if you use it 'lawful good&… |
|
|
|
Post #AvYU43MVLBHa5WrI6C by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@gsuberland or "this bug just causes X to reboot and take a minute or two … |
|
|
|
Post #AvYU43TEw8fcQQ0fb6 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@azonenberg the new CVSS 4 spec actually has a thing for that, at least. |
|
|
|
Post #AvYU43ZGZjUUj6pTzU by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@gsuberland our reporting systems at work are still on 3.x, there's been ta… |
|
|
|
Post #AvYU43eaFxkCzbJjHM by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@azonenberg it still has most of the same problems. just has a few new fields f… |
|
|
|
Post #AvYU5EmaMeWJnYceO0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@gsuberland you forgot that the config var is not set by default and has to be … |
|
|
|
Post #AvYUDiypySrPlsOrVg by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@gsuberland I think any “one number” metric is probably doomed not to cope … |
|
|
|
Post #AvYUHkQmWSAHQeOC8W by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@sarahjamielewis @gsuberland This is why I'm so adamant that a proper vulne… |
|
|
|
Post #AvYUKmQFZhRiTRaQPQ by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@gsuberland once you delete all the files the risk of a breach goes down signif… |
|
|
|
Post #AvYUOtWR7UuXeTRSxE by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@gsuberland not that hyperbolic. As far as I know, I have had my fingers in wri… |
|
|
|
Post #AvYURvPWYT5WNTebHU by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@gsuberland Yeah, and you can't even opt out as a CNA. If you don't fil… |
|
|
|
Post #AvYUSOGfGUETsOjQzw by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@gsuberland you're not THAT hyperbolic. I've angrily submitted PRs to g… |
|
|
|
Post #AvYUVyohphN46GMksa by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@gsuberlandWe should propose using a single number that is the number of steps … |
|
|
|
Post #AvYoYGmM1Gc9TFdRY0 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@gsuberland I would think CVSS’s exploiitability metrics would help there, th… |
|
|
|
Post #AvYogfuAU9QxiMIXYm by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bascule @gsuberland curious both your thoughts on EPSS? We're exploring v4… |
|
|
|
Post #AvYp0o3trql4nwRvzk by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@petrillic @gsuberland I don’t know enough about it to have an opinion |
|
|
|
Post #AvYp4s0P9BhEC4khX6 by [email protected] |
|
0 likes, 0 repeats |
|
|
|
@bascule the problem is granularity. you can have two issues that fit into the … |
