NAME

CVSS::v2 - Parse and calculate CVSS v2.0 scores

SYNOPSIS

use CVSS::v2;
my $cvss = CVSS::v2->from_vector_string('AV:N/AC:L/Au:N/C:N/I:N/A:C');

say $cvss->AV; # N
say $cvss->accessVector; # NETWORK

DESCRIPTION

The Common Vulnerability Scoring System (CVSS) provides an open framework for communicating the characteristics and impacts of IT vulnerabilities. CVSS consists of 3 groups: Base, Temporal and Environmental. Each group produces a numeric score ranging from 0 to 10, and a Vector, a compressed textual representation that reflects the values used to derive the score. The Base group represents the intrinsic qualities of a vulnerability. The Temporal group reflects the characteristics of a vulnerability that change over time. The Environmental group represents the characteristics of a vulnerability that are unique to any user's environment. CVSS enables IT managers, vulnerability bulletin providers, security vendors, application vendors and researchers to all benefit by adopting this common language of scoring IT vulnerabilities.

https://www.first.org/cvss/v2/guide

METHODS

CVSS::v2 inherits all methods from CVSS::Base and implements the following new ones.

$cvss-weight ( $metric ): Return the weight of provided metric.
$cvss->W ( $metric ): Alias of weight.

BASE METRICS

$cvss->AV | $cvss->accessVector
$cvss->AC | $cvss->accessComplexity
$cvss->Au | $cvss->authentication
$cvss->C | $cvss->confidentialityImpact
$cvss->I | $cvss->integrityImpact
$cvss->A | $cvss->availabilityImpact

TEMPORAL METRICS

$cvss->E | $cvss->exploitability
$cvss->RL | $cvss->remediationLevel
$cvss->RC | $cvss->reportConfidence

ENVIRONMENTAL METRICS

$cvss->CDP | $cvss->collateralDamagePotential
$cvss->TD | $cvss->targetDistribution
$cvss->CR | $cvss->confidentialityRequirement
$cvss->IR | $cvss->integrityRequirement
$cvss->AR | $cvss->availabilityRequirement

SUPPORT

Bugs / Feature Requests

Please report any bugs or feature requests through the issue tracker at https://github.com/giterlizzi/perl-CVSS/issues. You will be notified automatically of any progress on your issue.

Source Code

This is open source software. The code repository is available for public review and contribution under the terms of the license.

https://github.com/giterlizzi/perl-CVSS

git clone https://github.com/giterlizzi/perl-CVSS.git

AUTHOR

Giuseppe Di Terlizzi <gdt@cpan.org>

LICENSE AND COPYRIGHT

This is free software; you can redistribute it and/or modify it under the same terms as the Perl 5 programming language system itself.

To install CVSS, copy and paste the appropriate command in to your terminal.

cpanm

cpanm CVSS

CPAN shell

perl -MCPAN -e shell
install CVSS

For more information on module installation, please visit the detailed CPAN module installation guide.

	Global
`s`	Focus search bar
`?`	Bring up this help dialog

	GitHub
`g` `p`	Go to pull requests
`g` `i`	Go to GitHub issues (only if GitHub is preferred repository)

	POD
`g` `a`	Go to author
`g` `c`	Go to changes
`g` `i`	Go to issues
`g` `d`	Go to dist
`g` `r`	Go to repository/SCM
`g` `s`	Go to source
`g` `b`	Go to file browse

Search terms
module: (e.g. module:Plugin)
distribution: (e.g. distribution:Dancer auth)
author: (e.g. author:SONGMU Redis)
version: (e.g. version:1.00)