CVSSv3 and DREAD calculators

CVSSv3 score calculator

Our Common Vulnerability Scoring System Version 3.0 (CVSSv3) Calculator is heavily inspired by the one provided by FIRST.

Navigate to /pro/calculators/cvss in your browser to access the Dradis CVSSv3 score calculator.

Select the correct values for:

Base: Attack Vector, Attack Complexity, Privileges Required, User Interaction, Scope, Confidentiality, Integrity, Avaiability.

Temporal: Exploit Code Maturity, Remediation Level, Report Confidence

Environmental: Confidentiality Requirement, Integrity Requirement, Availability Requirement, Modified Attack Vector, Modified Attack Complexity, Modified Privileges Required, Modified User Interaction, Modified Scope, Modified Confidentiality, Modified Integrity<, Modified Availability

Then, copy/paste the output in the right hand sidebar into the corresponding Issue in your Dradis project.

DREAD score calculator

DREAD stands for (D)amage, (R)eproducibility, (E)xploitability, (A)ffected users, (D)iscoverability and is a common risk assessment model introduced by Microsoft.

Navigate to /pro/calculators/dread in your browser to access the Dradis DREAD score calculator.

Select the correct values for Damage Potential, Affected users or systems, Reproducibility, Exploitability, and Discoverability.

Then, copy/paste the output in the right hand sidebar into the corresponding Issue in your Dradis project.