cvss_vulnerability_scoring 1.0.0 copy "cvss_vulnerability_scoring: ^1.0.0" to clipboard
cvss_vulnerability_scoring: ^1.0.0 copied to clipboard

Published 5 days agoverified publishernullcube.me
SDKDartFlutter
PlatformAndroidiOSLinuxmacOSwebWindows

Metadata

CVSS v2.0, v3.0, and v3.1 score calculation and parsing for Dart

More...

🧮 CVSS Vulnerability Scoring #

Note

This library is in beta. The API may change between minor versions.

CVSS Vulnerability Scoring banner

Getting started #

  • Calculates CVSS v2.0, v3.0, and v3.1 scores
  • Automatically detect the CVSS version from the vector prefix

Supported Metrics #

CVSS Version Base Metric Extended Metric (Temporal, Environmental…)
CVSS v3.1 🚧 Not implemented
CVSS v3.0 🚧 Not implemented
CVSS v2.0 🚧 Not implemented

Usage #

Parsing any CVSS vector

import 'package:cvss_vulnerability_scoring/cvss_vulnerability_scoring.dart';

final cvss = CVSS.fromString('CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H');
print(cvss.calculateBaseScore());      // 9.8
print(cvss.baseSeverityRating().name); // critical
print(cvss);                           // CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Constructing a CVSS v3.1 object directly

import 'package:cvss_vulnerability_scoring/cvss_vulnerability_scoring.dart';

final cvss = CVSSv31(
  attackVector: AttackVector.network,
  attackComplexity: AttackComplexity.low,
  privilegesRequired: PrivilegesRequired.none,
  userInteraction: UserInteraction.none,
  scope: Scope.unchanged,
  confidentialityImpact: ConfidentialityImpact.high,
  integrityImpact: IntegrityImpact.high,
  availabilityImpact: AvailabilityImpact.high,
);

print(cvss.calculateBaseScore());      // 9.8
print(cvss.baseSeverityRating().name); // critical

Constructing a CVSS v2.0 object

import 'package:cvss_vulnerability_scoring/cvss_vulnerability_scoring.dart';

final cvss = CVSSv20(
  accessVector: AccessVector.network,
  accessComplexity: AccessComplexity.low,
  authentication: Authentication.none,
  confidentialityImpact: ConfidentialityImpactV2.partial,
  integrityImpact: IntegrityImpactV2.partial,
  availabilityImpact: AvailabilityImpactV2.partial,
);

print(cvss.calculateBaseScore());      // 7.5
print(cvss.baseSeverityRating().name); // high

See example/main.dart for a runnable sample.

Contributing #

See the Contributing guide for more information.

License #

All of CVSS Vulnerability Scoring library is licensed under the Apache-2.0 license unless otherwise stated.

See the license file for more information.

Metadata

1
likes
160
points
113
downloads

Documentation

API reference

Publisher

verified publishernullcube.me

Weekly Downloads

Metadata

CVSS v2.0, v3.0, and v3.1 score calculation and parsing for Dart

Repository (GitHub)
View/report issues

Topics

#cvss #vulnerability #security #scoring

Funding

Consider supporting this project:

github.com

License

Apache-2.0 (license)

More

Packages that depend on cvss_vulnerability_scoring

Back