|
|
|
|
|
|
by MattPalmer1086
1018 days ago
|
|
|
I'm not sure we will ever have a universally accepted objective measure of risk. Risk is, by its nature, somewhat subjective. Most organisations will use CVEs and the CVSS system as a starting point, but will triage them and produce their own assessment of the actual risk to them and their products given how the software is used. |
|
|