Open andrewbwm opened 3 years ago
We may wish to integrate reports(e. g., https://www.cisa.gov/known-exploited-vulnerabilities-catalog) into the values assigned to the defences on the SoftwareVulnerability asset, such as highComplexityExploitRequired.
SoftwareVulnerability
highComplexityExploitRequired
The debate so far has not come to any conclusions and was postponed for after the v1.0 release.
We may wish to integrate reports(e. g., https://www.cisa.gov/known-exploited-vulnerabilities-catalog) into the values assigned to the defences on the
SoftwareVulnerabilityasset, such ashighComplexityExploitRequired.The debate so far has not come to any conclusions and was postponed for after the v1.0 release.