A security advisory summarizes the work that Secunia Research performs to communicate standardized, validated, and enriched vulnerability research on a specific software product version.
We issue Secunia Research criticality ratings and common vulnerability scoring system (CVSS) metrics after a distinct analysis in the advisories. This dual rating method allows for a much-improved means of prioritizing by criticality—delivering a review that includes product context and related security best practices.
When our research team issues a rejection advisory, it means we’ve determined it isn't worthy of your attention. This occurs if a vendor issues an advisory acknowledging vulnerabilities that we don’t believe to be valid and offers a product solution we aren’t recommending or are exceeding already. This saves you considerable time.
If someone other than the vendor issues an advisory that we don’t believe to be valid, we discard it. We do this so you don’t waste your time processing inconsequential vulnerability information.
The attached article discusses specific content and values found in a Secunia Security Advisory. For a high-level look at what can be found, check out this infographic.
on Jul 08, 2020 01:38 PM - edited on Jun 03, 2024 03:17 PM by HollyM
The link to SAID-Anatomy.pdf is broken...