popexizhi / ratproxy

Automatically exported from code.google.com/p/ratproxy
0 stars 0 forks source link

Report risk and risk modifier designations #43

Closed GoogleCodeExporter closed 8 years ago

GoogleCodeExporter commented 8 years ago
What steps will reproduce the problem?
1.How does ratproxy classify Risk for a vulnerability?
  CVSS Base Score?

Original issue reported on code.google.com by m.tutie2...@gmail.com on 4 Jan 2011 at 8:07

GoogleCodeExporter commented 8 years ago
This is mentioned in the documentation; it's a composite of approximate issue 
impact and check specificity. There's no formula behind it.

Original comment by lcam...@gmail.com on 4 Jan 2011 at 6:36

GoogleCodeExporter commented 8 years ago
About "high" "medium" "low" displayed by a report, 
 Not the evaluation that used CVSS base score ,
Ratproxy judge the emergency degree of the problem from an original standard ?.

Is the evaluation standard closed? .

Original comment by m.tutie2...@gmail.com on 4 Jan 2011 at 11:37