Beyond Subjectivity: Sharpening CVSS with Asset Context - Clayton Fields, Michael Assraf - ESW #208

published 5 months ago by Security Weekly

Vulnerability prioritization has traditionally relied on CVSS scores and other subjective measurements (e.g. asset tagging) that don't factor in internal context. A new approach integrates asset context and application activity to derive rich, internal data.   This segment is sponsored by Vicarius. Visit to learn more about them!   Visit for all the latest episodes! Show Notes:

more episodes from Paul's Security Weekly TV