Saved in:
Bibliographic Details
Main Authors: Santana, Miguel, Cogo, Vinicius V., de Sá, Alan Oliveira
Format: Preprint
Published: 2024
Subjects:
Online Access:https://arxiv.org/abs/2405.08539
Tags: Add Tag
No Tags, Be the first to tag this record!
_version_ 1866914796090163200
author Santana, Miguel
Cogo, Vinicius V.
de Sá, Alan Oliveira
author_facet Santana, Miguel
Cogo, Vinicius V.
de Sá, Alan Oliveira
contents Background: Timely prioritising and remediating vulnerabilities are paramount in the dynamic cybersecurity field, and one of the most widely used vulnerability scoring systems (CVSS) does not address the increasing likelihood of emerging an exploit code. Aims: We present SecScore, an innovative vulnerability severity score that enhances CVSS Threat metric group with statistical models from empirical evidences of real-world exploit codes. Method: SecScore adjusts the traditional CVSS score using an explainable and empirical method that more accurately and promptly captures the dynamics of exploit code development. Results: Our approach can integrate seamlessly into the assessment/prioritisation stage of several vulnerability management processes, improving the effectiveness of prioritisation and ensuring timely remediation. We provide real-world statistical analysis and models for a wide range of vulnerability types and platforms, demonstrating that SecScore is flexible according to the vulnerability's profile. Comprehensive experiments validate the value and timeliness of SecScore in vulnerability prioritisation. Conclusions: SecScore advances the vulnerability metrics theory and enhances organisational cybersecurity with practical insights.
format Preprint
id arxiv_https___arxiv_org_abs_2405_08539
institution arXiv
publishDate 2024
record_format arxiv
spellingShingle SecScore: Enhancing the CVSS Threat Metric Group with Empirical Evidences
Santana, Miguel
Cogo, Vinicius V.
de Sá, Alan Oliveira
Cryptography and Security
Background: Timely prioritising and remediating vulnerabilities are paramount in the dynamic cybersecurity field, and one of the most widely used vulnerability scoring systems (CVSS) does not address the increasing likelihood of emerging an exploit code. Aims: We present SecScore, an innovative vulnerability severity score that enhances CVSS Threat metric group with statistical models from empirical evidences of real-world exploit codes. Method: SecScore adjusts the traditional CVSS score using an explainable and empirical method that more accurately and promptly captures the dynamics of exploit code development. Results: Our approach can integrate seamlessly into the assessment/prioritisation stage of several vulnerability management processes, improving the effectiveness of prioritisation and ensuring timely remediation. We provide real-world statistical analysis and models for a wide range of vulnerability types and platforms, demonstrating that SecScore is flexible according to the vulnerability's profile. Comprehensive experiments validate the value and timeliness of SecScore in vulnerability prioritisation. Conclusions: SecScore advances the vulnerability metrics theory and enhances organisational cybersecurity with practical insights.
title SecScore: Enhancing the CVSS Threat Metric Group with Empirical Evidences
topic Cryptography and Security
url https://arxiv.org/abs/2405.08539