Differences in Vulnerability Severities Between Scoring Systems
For insight into differences between the two scoring systems, the following table shows the severity levels available in the two CVSS versions and the range of scores that define each severity:
| Severity | CVSS v3.x Score Range | CVSS v2.0 Score Range |
|---|---|---|
| Critical | 9.0 - 10.0 | |
| High | 7.0 - 8.9 | 7.0 - 10.0 |
| Medium | 4.0 - 6.9 | 4.0 - 6.9 |
| Low | 0.1 - 3.9 | 0.1 - 3.9 |
| Unknown (v3.x) None (v2.0) | N/A | N/A |
For information on how switching CVSS versions can impact policies, see “Policy Details Page” in the Code Insight User Guide.