CVSSv3 and DREAD calculators

CVSSv3 score calculator

Our Common Vulnerability Scoring System Version 3.0 (CVSSv3) Calculator is heavily inspired by the one provided by FIRST.

Navigate to /pro/calculators/cvss in your Dradis host to access the Dradis CVSSv3 score calculator.

Select the correct values for:

Base: Attack Vector, Attack Complexity, Privileges Required, User Interaction, Scope, Confidentiality, Integrity, Avaiability.

Temporal: Exploit Code Maturity, Remediation Level, Report Confidence

Environmental: Confidentiality Requirement, Integrity Requirement, Availability Requirement, Modified Attack Vector, Modified Attack Complexity, Modified Privileges Required, Modified User Interaction, Modified Scope, Modified Confidentiality, Modified Integrity<, Modified Availability

Then, copy/paste the output in the right hand sidebar into the corresponding Issue in your Dradis project.

Projects 55

DREAD score calculator

DREAD stands for (D)amage, (R)eproducibility, (E)xploitability, (A)ffected users, (D)iscoverability and is a common risk assessment model introduced by Microsoft.

Navigate to /pro/calculators/dread in your Dradis host to access the Dradis DREAD score calculator.

Select the correct values for Damage Potential, Affected users or systems, Reproducibility, Exploitability, and Discoverability.

Then, copy/paste the output in the right hand sidebar into the corresponding Issue in your Dradis project.

Projects 56

Next help article: Add attachments →

InfoSec project delivery 5-day crash course

Learn innovative, actionable techniques and approaches for reducing the overhead that drags down InfoSec project delivery. You’ll learn how to optimize:

  • Scoping
  • Scheduling
  • Project Planning
  • Delivery
  • Intra-team Collaboration
  • Reporting and much more...

Your email is kept private. We don't do the spam thing.