Content Paint
Search
Sign in
Membership

CVSS

 |  Security  | Mar 17, 2026
4 KVM vendors, 9 vulns – including an unfixed CVSS 9.8
4 KVM vendors, 9 vulns – including an unfixed CVSS 9.8

All the joy of physical-presence vulnerabilities but remotely, and many cheap, single-port IP-KVMs are wide open, says Eclypsium.

 |  News  | Apr 17, 2025
CVSS 10 bug allows pre-auth access to Erlang/OTP SSH servers, host devices
A sign reading "Restricted Area. Authorized Personnel Only" - the Erlang/OTP bug allows attackers unauthorised access

Users advised to immediately update or restrict SSH server access

Security  | Sep 01, 2023
Academics warn over "problematic metrics and documentation" in CVSS system
Academics warn over "problematic metrics and documentation" in CVSS system

A study out of Germany has highlighted shortcomings in the CVSS system and the way security vulnerabilities are assessed and scored

Security  | Jun 19, 2023
CVSS 4.0 aims for greater clarity on cybersecurity risk -- adds OT, response components
CVSS 4.0 release details

New metrics for Operational Technology exposure include whether the "consequences of the vulnerability meet definition of IEC 61508 consequence categories of "marginal," "critical," or "catastrophic."

Interviews, insight, intelligence, and exclusive events for digital leaders.

© 2026 The Stack
©  2026 The Stack

Search the site
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Your link has expired. Please request a new one.
Great! You've successfully signed up.
Great! You've successfully signed up.
Welcome back! You've successfully signed in.
Success! You now have access to additional content.