Ruminations on David Weinstein’s "Ruminations on App CVEs" http://bit.ly/1gvKSq7 (by @attritionorg) <= A must read to understand CVE state
@stevewerby unfortunately. the industry needs to understand it since it is an 'accepted standard' though.
-
-
@attritionorg Do you think the public understands the impact of the delay in issuing a CVE or one never being issued? -
@stevewerby public at large no. i don't think our industry fully grasps it though. need to start there.
End of conversation
New conversation -
-
-
@attritionorg I think most in the security field infer that the impact is negative, but couldn't articulate how or how much. -
@stevewerby right, "it's not good" but more a notion than a concrete set of reasons. -
@attritionorg I fall into that bucket. Concrete may be a unicorn, but some concise explanations of the impact type and severity would help. -
@stevewerby knowing CVE missed at least 39,000 vulns since inception? big number. knowing that number is growing faster every year? telling
End of conversation
New conversation -
Loading seems to be taking a while.
Twitter may be over capacity or experiencing a momentary hiccup. Try again or visit Twitter Status for more information.