What's new with CVSS 4.0, and does it really change anything?
Talos Takes
English - January 19, 2024 09:00 - 9 minutes - 6.59 MBTechnology security cyber news security news cyber security news cisco talos snort incident response news roundup Homepage Download Google Podcasts Overcast Castro Pocket Casts RSS feed
Previous Episode: XL Edition: Talos' 2023 Year in Review
Next Episode: (XL Edition): Talos IR recaps the top threats of Q4 2023
We're talking about vulnerabilities this week with Jerry Gamblin from Cisco Vulnerability Management. Jerry joins the show to talk about the release of CVSS 4.0 this year — the newest method the security community will use to score the severity of certain vulnerabilities. Jerry discusses what makes this scoring system different from previous iterations if it changes how he views the term "severe" and how that fits into Cisco's overall vulnerability management processes.