09/10/2018 02:08 AM EDT
Original
release date: September 10, 2018
The US-CERT Cyber Security Bulletin provides a summary of new
vulnerabilities that have been recorded by the National
Institute of Standards and Technology (NIST) National
Vulnerability Database (NVD) in the past week. The NVD is sponsored by the Department of Homeland Security (DHS) National Cybersecurity and Communications
Integration Center (NCCIC) / United
States Computer Emergency Readiness Team (US-CERT). For modified or updated
entries, please visit the NVD,
which contains historical vulnerability information.The vulnerabilities are based on the CVE vulnerability naming standard and are organized according to severity, determined by the Common Vulnerability Scoring System (CVSS) standard. The division of high, medium, and low severities correspond to the following scores:
·
High -
Vulnerabilities will be labeled High severity if they have a CVSS base score of
7.0 - 10.0
·
Medium -
Vulnerabilities will be labeled Medium severity if they have a CVSS base score
of 4.0 - 6.9
·
Low - Vulnerabilities
will be labeled Low severity if they have a CVSS base score of 0.0 - 3.9
Entries may include additional information provided by organizations and
efforts sponsored by US-CERT. This information may include identifying
information, values, definitions, and related links. Patch information is
provided when available. Please note that some of the information in the
bulletins is compiled from external, open source reports and is not a direct
result of US-CERT analysis.The NCCIC Weekly Vulnerability Summary Bulletin is created using information from the National Institute of Standards and Technology (NIST) National Vulnerability Database (NVD). In some cases, the vulnerabilities in the Bulletin may not yet have assigned CVSS scores. Please visit NVD for updated vulnerability entries, which include CVSS scores once they are available
No comments:
Post a Comment