Common Vulnerability Scoring System
CVSS assigns vulnerabilities a severity score from 0 to 10 based on factors like exploitability and impact. Security teams use the score as a starting point for deciding which patches to prioritize. It matters because organizations face thousands of vulnerabilities and need a consistent way to compare their severity, though score alone should not be the only factor.