CVSS_CALCULATOR

Exploitability Metrics

Attack Vector (AV)Reflects the context by which vulnerability exploitation is possible.

Attack Complexity (AC)Conditions beyond attacker's control that must exist to exploit.

Privileges Required (PR)The level of privileges an attacker must possess before exploiting.

User Interaction (UI)Whether the vulnerability can be exploited without user interaction.

Scope (S)Whether a vulnerability impacts resources beyond its security boundary.

Confidentiality (C)Impact on the confidentiality of the data managed by the software.

Integrity (I)Impact on the integrity of the data managed by the software.

Availability (A)Impact on the availability of the impacted component.

Base Score

0.0

UNKNOWN

Vector String

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

None0.0

Low0.1 – 3.9

Medium4.0 – 6.9

High7.0 – 8.9

Critical9.0 – 10.0

Use the Scope metric carefully. If an exploit impacts a component beyond its security boundary (e.g., a sandbox escape), set Scope to Changed.