| 英文摘要 |
In today’s increasingly complex and interconnected network environment, the frequency and sophistication of cyberattacks are steadily rising, posing significant challenges to global information security. To effectively address these growing threats, enterprises and organizations are investing considerable resources to enhance their cybersecurity defenses. Given the rapidly evolving nature of attack techniques and technologies, there is an urgent need for a standardized system that can accurately assess and manage various types of cybersecurity risks.
This study aims to explore how to predict the CVSS (Common Vulnerability Scoring System) base scores of cybersecurity incidents based on CVSS scoring criteria, thereby assisting organizations in more accurately evaluating the severity of such incidents. CVSS provides a detailed and consistent scoring framework by assessing multiple indicators, including attack vector, attack complexity, privileges required, user interaction, and the impacts on confidentiality, integrity, and availability. This enables organizations to better prioritize resources and implement effective risk control strategies.
The research collects JSON-formatted data published by the CVE Program on GitHub from 2020 to 2024. After parsing and cleaning the dataset, a CVSS risk score prediction system based on deep learning is constructed. The study employs RoBERTa and DeBERTa—two natural language processing models—for regression tasks, and compares their performance using various hyperparameter configurations. Finally, a data visualization module is integrated to visually compare the model predictions with actual CVSS base scores, clearly highlighting performance differences. This approach helps enterprises quickly assess risk levels at the early stages of incidents and improve their cybersecurity decision-making processes. |
本站僅提供期刊文獻檢索。
