Symantec Deep Sight Alert Service
Urgency Rating
This rates the urgency of the vulnerability on a scale of 0 (low) to 10 (high). It
implies the priority you should place on fixing or mitigating the vulnerability. It
is based on the weighted values of Severity, Ease, and Credibility.
■ Severity = 65%
■ Ease = 20%
■ Credibility = 15%
Note: Credibility is based on a scale of 1 to 6. In order for Credibility to comprise
15% of Urgency, the Credibility value must be multiplied by 1.667 which makes
the credibility scale consistent with other ratings based on a scale of 0 (low) to
10 (high).
Severity
This rates how severe a vulnerability is on a scale of 0 (low) to 10 (high). It is
based on the weighted values of Impact, Availability, Authentication, and
Remote fields.
■ Impact = 55%
■ Availability = 10%
■ Authentication = 10%
■ Remote = 25%
Impact
This field rates the impact of a vulnerability on a scale of 0 (low) to 10 (high). The
numerical value is determined with a formula based on the value of the security
properties lost, the privilege obtained, and the objects affected. Impact consists
of three security properties that can be lost:
■ Availability (A) - A vulnerability that results in a denial of service
■ Confidentiality (C) - A vulnerability that results in the disclosure of
otherwise protected data
■ Integrity (I) - A vulnerability that results in the modification of otherwise
protected data