This page provides a calculator for creating CVSS vulnerability
To fully understand how to score CVSS values and interpret CVSVS scores, consult the CVSS standards guide.
The scores are computed in sequence such that the Base Score is used to calculate the Temporal Score and the
Temporal Score is used to calculate the Environmental Score.
CVSS Base Score
CVSS Temporal Score
CVSS Environmental Score
Overall CVSS Score
Base Score Metrics
These metrics describe inherent characteristics of the vulnerability.
All of these metrics must be filled in to produce any CVSS scores.
Related exploit range (AccessVector)
Attack complexity (AccessComplexity)
Level of authentication needed (Authentication)
Confidentiality impact (ConfImpact)
Integrity impact (IntegImpact)
Availability impact (AvailImpact)
Impact value weighting (ImpactBias)
Environmental Score Metrics
This section addresses metrics that describe the effect of a vulnerability within an organization's environment.
These metrics must be calculated separately for each organization.
Organization specific potential for loss (CollateralDamagePotential)
Percentage of vulnerable systems (TargetDistribution)
Temporal Score Metrics
These metrics describe elements about the vulnerability that change over time.
Availability of exploit (Exploitability)
Type of fix available (RemediationLevel)
Level of verification that vulnerability exists (ReportConfidence)