CVSS

A methodology configuration is based on CVSS-style likelihood factors and impact categories.

The methodology evaluates likelihood using the following categories:

  • Attack Vector
  • Attack Complexity
  • Privileges Required
  • User Interaction