Patent · US Active

CVSS information update by analyzing vulnerability information

US9003537B2 · kind B2 · utility

9Cited by

1References

20Claims

0Family size

Assignee

HEWLETT-PACKARD DEVELOPMENT COMPANY, L.P. · US

Inventors

Barak Raz · Sunnyvale, US
Ben Feher · Yehud Monosson, IL

Key dates

Filing date	Jan 31, 2013
Grant date	Apr 7, 2015
Priority date	—
Expiry date	Mar 8, 2033

Classification

Technology area (CPC G)Physics
CPC primaryG06F21/577
WIPO fieldComputer technology
WIPO sectorElectrical engineering

Abstract

An automated system for automatic update of a Common Vulnerability Scoring System (CVSS) score, the system including vulnerability information analyzing functionality to analyze preexisting vulnerability information, the preexisting vulnerability information relating to at least one of at least one vulnerability and at least one attack vector thereof, the at least one vulnerability having a preexisting CVSS score, the preexisting CVSS score being based at least partially on the preexisting vulnerability information, vulnerability information extraction functionality, responsive to the analyzing preexisting vulnerability information, to extract new vulnerability information, the new vulnerability information relating to the at least one of the at least one vulnerability and the at least one attack vector thereof, and CVSS score updating functionality to employ the new vulnerability information to update the preexisting CVSS score.

Source: USPTO / EPO open patent data. Objective bibliographic and citation counts.