Analyzing Vulnerabilities Flashcards

1
Q

False positive

A

-a vulnerability is identified that doesn’t exist

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
2
Q

False negative

A

A vulnerability exists, but not detected

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
3
Q

CVSS (common vulnerability scoring system)

A

is a standardized framework used to assess the severity of security vulnerabilities in software and hardware. It provides a way to quantify the characteristics and impact of vulnerabilities, allowing organizations to prioritize their responses based on risk

How well did you know this?
1
Not at all
2
3
4
5
Perfectly
4
Q

CVE (common vulnerabilities and exposures)

A

is a standardized system for identifying and cataloging publicly known cybersecurity vulnerabilities. It serves as a reference method for publicly known information security vulnerabilities and exposures

How well did you know this?
1
Not at all
2
3
4
5
Perfectly