New CVSS 3.1 Support

Oguz Kurumlu - Wed, 01 Apr 2020 -

Netsparker contains Classifications of multiple industry vulnerability standards. The March 2020 Update for Netsparker 5.7 added support for the CVSS 3.1 software industry standard for assessing and classifying web application security vulnerabilities. This classification sits in the Invicti Standard report along with others.

In the latest March 2020 Update for Invicti Standard 5.7, we added support for CVSS 3.1. The addition of CVSS 3.1 assigns severity scores to detected vulnerabilities, which means that security teams have more information to enable them to decide on which issues get prioritised based on the level of threat.

The Common Vulnerability Scoring System is a software industry standard for assessing web application security vulnerabilities and classifying them according to severity and impact.

In Invicti Standard reports, both CVSS 3.0 and 3.1 now sit alongside other Classifications such as PCI, OWASP and HIPPA. For further information, see Vulnerability. For further information on other features in this release, see March Update for Invicti Standard 5.7.

New CVSS 3.1 Support

Related Articles

SQL Injection Cheat Sheet

HTTP security headers: An easy way to harden your web applications

How you can disable directory listing on your web server – and why you should

JSON injection