Accurate severity scoring is vital for prioritizing vulnerability remediation efforts and meeting regulatory reporting thresholds. The CVD Portal includes a fully integrated Common Vulnerability Scoring System (CVSS) calculator, allowing your team to consistently and objectively evaluate the impact of validated security flaws. Utilizing standardized scoring methodologies is a key component of a mature, Cyber Resilience Act (CRA) compliant vulnerability management program.
The integrated calculator supports the latest CVSS versions (v3.1 and v4.0), providing an intuitive interface for assessing the Base, Temporal, and Environmental metrics of a vulnerability. As your analysts select the appropriate vector components—such as Attack Vector, Attack Complexity, and Privileges Required—the portal dynamically calculates the final score and severity rating (Low, Medium, High, Critical). This eliminates manual calculation errors and ensures consistency across your entire team.
Furthermore, the generated CVSS vectors are automatically attached to the vulnerability record and can be exported as part of structured threat intelligence feeds (such as CSAF). This standardized metric is often required when notifying upstream vendors, downstream customers, or regulatory bodies about a newly discovered vulnerability, facilitating clear communication of the associated risk.