Class CVSSv3.Builder (2.6.0)

Common Vulnerability Scoring System version 3. For details, see https://www.first.org/cvss/specification-document

Protobuf type google.cloud.osconfig.v1.CVSSv3

This metric describes the conditions beyond the attacker's control that must exist in order to exploit the vulnerability.

.google.cloud.osconfig.v1.CVSSv3.AttackComplexity attack_complexity = 6;

This metric reflects the context by which vulnerability exploitation is possible.

.google.cloud.osconfig.v1.CVSSv3.AttackVector attack_vector = 5;

This metric measures the impact to the availability of the impacted component resulting from a successfully exploited vulnerability.

.google.cloud.osconfig.v1.CVSSv3.Impact availability_impact = 12;

The base score is a function of the base metric scores. https://www.first.org/cvss/specification-document#Base-Metrics

float base_score = 1;

This metric measures the impact to the confidentiality of the information resources managed by a software component due to a successfully exploited vulnerability.

.google.cloud.osconfig.v1.CVSSv3.Impact confidentiality_impact = 10;

The Exploitability sub-score equation is derived from the Base Exploitability metrics. https://www.first.org/cvss/specification-document#2-1-Exploitability-Metrics

float exploitability_score = 2;

The Impact sub-score equation is derived from the Base Impact metrics.

float impact_score = 3;

This metric measures the impact to integrity of a successfully exploited vulnerability.

.google.cloud.osconfig.v1.CVSSv3.Impact integrity_impact = 11;

This metric describes the level of privileges an attacker must possess before successfully exploiting the vulnerability.

.google.cloud.osconfig.v1.CVSSv3.PrivilegesRequired privileges_required = 7;

The Scope metric captures whether a vulnerability in one vulnerable component impacts resources in components beyond its security scope.

.google.cloud.osconfig.v1.CVSSv3.Scope scope = 9;

This metric captures the requirement for a human user, other than the attacker, to participate in the successful compromise of the vulnerable component.

.google.cloud.osconfig.v1.CVSSv3.UserInteraction user_interaction = 8;

This metric describes the conditions beyond the attacker's control that must exist in order to exploit the vulnerability.

.google.cloud.osconfig.v1.CVSSv3.AttackComplexity attack_complexity = 6;

This metric describes the conditions beyond the attacker's control that must exist in order to exploit the vulnerability.

.google.cloud.osconfig.v1.CVSSv3.AttackComplexity attack_complexity = 6;

This metric reflects the context by which vulnerability exploitation is possible.

.google.cloud.osconfig.v1.CVSSv3.AttackVector attack_vector = 5;

This metric reflects the context by which vulnerability exploitation is possible.

.google.cloud.osconfig.v1.CVSSv3.AttackVector attack_vector = 5;

This metric measures the impact to the availability of the impacted component resulting from a successfully exploited vulnerability.

.google.cloud.osconfig.v1.CVSSv3.Impact availability_impact = 12;

This metric measures the impact to the availability of the impacted component resulting from a successfully exploited vulnerability.

.google.cloud.osconfig.v1.CVSSv3.Impact availability_impact = 12;

The base score is a function of the base metric scores. https://www.first.org/cvss/specification-document#Base-Metrics

float base_score = 1;

This metric measures the impact to the confidentiality of the information resources managed by a software component due to a successfully exploited vulnerability.

.google.cloud.osconfig.v1.CVSSv3.Impact confidentiality_impact = 10;

This metric measures the impact to the confidentiality of the information resources managed by a software component due to a successfully exploited vulnerability.

.google.cloud.osconfig.v1.CVSSv3.Impact confidentiality_impact = 10;

The Exploitability sub-score equation is derived from the Base Exploitability metrics. https://www.first.org/cvss/specification-document#2-1-Exploitability-Metrics

float exploitability_score = 2;

The Impact sub-score equation is derived from the Base Impact metrics.

float impact_score = 3;

This metric measures the impact to integrity of a successfully exploited vulnerability.

.google.cloud.osconfig.v1.CVSSv3.Impact integrity_impact = 11;

This metric measures the impact to integrity of a successfully exploited vulnerability.

.google.cloud.osconfig.v1.CVSSv3.Impact integrity_impact = 11;

This metric describes the level of privileges an attacker must possess before successfully exploiting the vulnerability.

.google.cloud.osconfig.v1.CVSSv3.PrivilegesRequired privileges_required = 7;

This metric describes the level of privileges an attacker must possess before successfully exploiting the vulnerability.

.google.cloud.osconfig.v1.CVSSv3.PrivilegesRequired privileges_required = 7;

The Scope metric captures whether a vulnerability in one vulnerable component impacts resources in components beyond its security scope.

.google.cloud.osconfig.v1.CVSSv3.Scope scope = 9;

The Scope metric captures whether a vulnerability in one vulnerable component impacts resources in components beyond its security scope.

.google.cloud.osconfig.v1.CVSSv3.Scope scope = 9;

This metric captures the requirement for a human user, other than the attacker, to participate in the successful compromise of the vulnerable component.

.google.cloud.osconfig.v1.CVSSv3.UserInteraction user_interaction = 8;

This metric captures the requirement for a human user, other than the attacker, to participate in the successful compromise of the vulnerable component.

.google.cloud.osconfig.v1.CVSSv3.UserInteraction user_interaction = 8;

This metric describes the conditions beyond the attacker's control that must exist in order to exploit the vulnerability.

.google.cloud.osconfig.v1.CVSSv3.AttackComplexity attack_complexity = 6;

This metric describes the conditions beyond the attacker's control that must exist in order to exploit the vulnerability.

.google.cloud.osconfig.v1.CVSSv3.AttackComplexity attack_complexity = 6;

This metric reflects the context by which vulnerability exploitation is possible.

.google.cloud.osconfig.v1.CVSSv3.AttackVector attack_vector = 5;

This metric reflects the context by which vulnerability exploitation is possible.

.google.cloud.osconfig.v1.CVSSv3.AttackVector attack_vector = 5;

This metric measures the impact to the availability of the impacted component resulting from a successfully exploited vulnerability.

.google.cloud.osconfig.v1.CVSSv3.Impact availability_impact = 12;

This metric measures the impact to the availability of the impacted component resulting from a successfully exploited vulnerability.

.google.cloud.osconfig.v1.CVSSv3.Impact availability_impact = 12;

The base score is a function of the base metric scores. https://www.first.org/cvss/specification-document#Base-Metrics

float base_score = 1;

This metric measures the impact to the confidentiality of the information resources managed by a software component due to a successfully exploited vulnerability.

.google.cloud.osconfig.v1.CVSSv3.Impact confidentiality_impact = 10;

This metric measures the impact to the confidentiality of the information resources managed by a software component due to a successfully exploited vulnerability.

.google.cloud.osconfig.v1.CVSSv3.Impact confidentiality_impact = 10;

The Exploitability sub-score equation is derived from the Base Exploitability metrics. https://www.first.org/cvss/specification-document#2-1-Exploitability-Metrics

float exploitability_score = 2;

The Impact sub-score equation is derived from the Base Impact metrics.

float impact_score = 3;

This metric measures the impact to integrity of a successfully exploited vulnerability.

.google.cloud.osconfig.v1.CVSSv3.Impact integrity_impact = 11;

This metric measures the impact to integrity of a successfully exploited vulnerability.

.google.cloud.osconfig.v1.CVSSv3.Impact integrity_impact = 11;

This metric describes the level of privileges an attacker must possess before successfully exploiting the vulnerability.

.google.cloud.osconfig.v1.CVSSv3.PrivilegesRequired privileges_required = 7;

This metric describes the level of privileges an attacker must possess before successfully exploiting the vulnerability.

.google.cloud.osconfig.v1.CVSSv3.PrivilegesRequired privileges_required = 7;

The Scope metric captures whether a vulnerability in one vulnerable component impacts resources in components beyond its security scope.

.google.cloud.osconfig.v1.CVSSv3.Scope scope = 9;

The Scope metric captures whether a vulnerability in one vulnerable component impacts resources in components beyond its security scope.

.google.cloud.osconfig.v1.CVSSv3.Scope scope = 9;

This metric captures the requirement for a human user, other than the attacker, to participate in the successful compromise of the vulnerable component.

.google.cloud.osconfig.v1.CVSSv3.UserInteraction user_interaction = 8;

This metric captures the requirement for a human user, other than the attacker, to participate in the successful compromise of the vulnerable component.

.google.cloud.osconfig.v1.CVSSv3.UserInteraction user_interaction = 8;