Part- A
During the labs we used the National Vulnerability Database. Select a recent vulnerability from that Database and analyse it from the following aspects:
• What problems they can cause (malicious activities an attacker may use them for, including attack types)
• Criticality level
• Impact including CVSS Score.**
• Proposed Solution
• Which of the Australian DSD '35 Strategies can be applied to mitigate the vulnerability. You must explain why the solution mitigated the vulnerability.
Include valid explanations and sources for your answer.
**Note: When stating the Impact, you must provide the following information:
CVSS v2 Base Score (specified if available)
Impact Subscore (specified if available)
Exploitability Subscore (specified if available)
Access Vector (specified if available)
Access Complexity (specified if available)
Authentication (specified if available)
Impact Type (specified if available)
Part - B
Explain the purpose of using CVSS scores.