The Common Vulnerability Scoring System (CVSS) is an international method for assessing and scoring security vulnerabilities in software and computer systems. CVSS provides an objective measure that allows for the assessment of vulnerability risks and the comparison of different vulnerabilities.

It is based on three main components: Base, Temporal, and Environmental. The Base score describes the fundamental characteristics of the vulnerability, Temporal relates to the impact over time, and Environmental assesses the final impact of exploiting the vulnerability. This method helps prioritize vulnerability remediation and allocate resources more efficiently.