Skip to content
Latchkey

CVSS (Common Vulnerability Scoring System) - CI/CD Glossary Definition

CVSS is a standard for scoring the severity of a vulnerability on a 0.0 to 10.0 scale from a vector of metrics (attack vector, complexity, privileges required, impact). It converts a CVE into a comparable number.

Severity bands

CVSS v3 maps scores to bands: 0.1-3.9 Low, 4.0-6.9 Medium, 7.0-8.9 High, 9.0-10.0 Critical. Scanners often gate builds on a CVSS threshold.

Related guides

Tired of flaky CI? Latchkey auto-heals failed jobs and retries them for you. Start free →