Vulnerability Management Nirvana: A Study in Predicting Exploitability

  • Friday, April 24, 2015 | 9:00 AM – 9:50 AM | West | Room: 2018

View all Sessions

When everything is a priority, nothing is. 15% or 10,000 vulnerabilities have a CVSS score of 10. Vendors and practitioners alike use CVSS or their own threat intelligence models to predict which vulnerabilities will be exploited next. We review current options, present a predictive data-driven prioritization model, and perform a longitudinal head-to-head test against CVSS over a 6 month period.


This document was retrieved from on Tue, 19 Feb 2019 15:58:13 -0500.