What are the changes in the third version of the Common Vulnerability Scoring System (CVSS)? A new metric called 'mitigation factors' was included ...

What are the changes in the third version of the Common Vulnerability Scoring System (CVSS)?
A new metric called 'mitigation factors' was included
The impact on confidentiality, integrity, and availability is now categorized as null, low, or high
A qualitative classification scale was included
The impact on confidentiality, integrity, and availability is now calculated based on the criticality of the information
The impact on confidentiality, integrity, and availability is now calculated based on the percentage of affected information

a) 1, 2, and 3 are correct.
b) 2, 3, and 4 are correct.
c) 1, 3, and 5 are correct.
d) 2, 4, and 5 are correct.
e) All of the above are correct.

Programação I

•

Colégio Objetivo

0

1

Estudando com Questões

03/05/2023

Essa pergunta também está no material:

13 pág.

(6) Estándares y modelos

Programação I • Universidad de Buenos AiresUniversidad de Buenos Aires

Milagros Abril

💡 1 Resposta

Ed

13.09.2023

A resposta correta é a alternativa (d) "2, 4 e 5 estão corretas". As mudanças na terceira versão do Common Vulnerability Scoring System (CVSS) incluem a adição de uma nova métrica chamada "fatores de mitigação", a inclusão de uma escala de classificação qualitativa e o cálculo do impacto na confidencialidade, integridade e disponibilidade com base na criticidade das informações afetadas e no percentual de informações afetadas.

0