What does CVSS stand for?

  1. Comprehensive Vulnerability Security System
  2. Critical Vulnerability Security Standard
  3. Common Vulnerability Scoring System ✓
  4. Cyber Vulnerability Scanning Service

Correct answer: Common Vulnerability Scoring System

Option C is correct because CVSS stands for Common Vulnerability Scoring System, an open industry standard maintained by FIRST that provides a numerical score from 0 to 10 to characterize the severity of software vulnerabilities based on factors such as exploitability and impact. Option A is incorrect because the word 'Comprehensive' does not appear in the acronym; CVSS is specifically about scoring, not a generic security system. Option B is incorrect because 'Critical' and 'Standard' do not match the actual expansion, and CVSS is not limited to critical vulnerabilities. Option D is incorrect because 'Cyber' and 'Scanning Service' do not reflect the correct expansion; CVSS provides a scoring framework, not a scanning service.

Topic: · cvss, vulnerability scoring, pentest+, risk assessment

Practice CompTIA PenTest+ (PT0-002) Questions Free