calculateRiskFromCvssScore
The calculateRiskFromCvssScore function converts a CVSS (Common Vulnerability Scoring System) score to a standardized risk severity level.
Syntax
Section titled “Syntax”{cvssScore | calculateRiskFromCvssScore}Parameters
Section titled “Parameters”input(number): CVSS score between 0 and 10
Returns
Section titled “Returns”A string representing the risk severity level based on CVSS v3 ranges
CVSS Score Mapping
Section titled “CVSS Score Mapping”| CVSS Score Range | Severity Level |
|---|---|
| 0.0 | Informational |
| 0.1 - 3.9 | Low |
| 4.0 - 6.9 | Medium |
| 7.0 - 8.9 | High |
| 9.0 - 10.0 | Critical |
Examples
Section titled “Examples”Basic conversion
Section titled “Basic conversion”{7.5 | calculateRiskFromCvssScore}// Returns: "High"Critical score
Section titled “Critical score”{9.8 | calculateRiskFromCvssScore}// Returns: "Critical"Low score
Section titled “Low score”{2.1 | calculateRiskFromCvssScore}// Returns: "Low"Zero score
Section titled “Zero score”{0 | calculateRiskFromCvssScore}// Returns: "Informational"With vulnerability data
Section titled “With vulnerability data”{vulnerability.cvss_score | calculateRiskFromCvssScore}// Converts vulnerability's CVSS score to severity levelUse Cases
Section titled “Use Cases”- Standardizing vulnerability severity across different scoring systems
- Creating risk-based vulnerability reports
- Prioritizing remediation based on CVSS scores
- Compliance reporting requiring severity categories
- Dashboard metrics for security posture