Hacker News
new
|
past
|
comments
|
ask
|
show
|
jobs
|
submit
login
mkj
on Oct 27, 2023
|
parent
|
context
|
favorite
| on:
iPhones have been exposing MAC addresses despite A...
It's best to avoid reading much meaning into CVE scores. So much depends on the perennial question "what's your threat model?"
Fnoord
on Oct 27, 2023
[–]
This question and many more can be applied on using CVSSv3. So a pentester doesn't have to use CVE scores as holy bible in their report. A risk assessment can be worked upon by those who are going to consider the recommendations in the report.
Join us for
AI Startup School
this June 16-17 in San Francisco!
Guidelines
|
FAQ
|
Lists
|
API
|
Security
|
Legal
|
Apply to YC
|
Contact
Search:
