Assessing Risk: Difference between revisions
From Cramsession
Jump to navigationJump to search
✍️ Verified Author: Mflavell • Click to view professional profile & credentials
No edit summary Tag: Manual revert |
|||
| Line 30: | Line 30: | ||
| 0 | | 0 | ||
|} | |} | ||
Likelihoods: | |||
* High - Easy, Well known exploit. | |||
* Medium - Requires expert knowledge to implement, could be performed by state actor. | |||
* Low - Requires insider knowledge to implement. | |||
* Theoretical - No proven path at this time to exploit the venerability. | |||
Revision as of 23:29, 16 May 2025
The risk Matrix
Provides a numerical assessment or risks posed by threats to the CIA triad.
| Impact ➡️
Likelihood ⬇️ |
Confidentiality | Integrity | Availability |
| high | 5 | 4 | 3 |
| Medium | 4 | 3 | 2 |
| Low | 3 | 2 | 1 |
| Theoretical | 2 | 1 | 0 |
Likelihoods:
- High - Easy, Well known exploit.
- Medium - Requires expert knowledge to implement, could be performed by state actor.
- Low - Requires insider knowledge to implement.
- Theoretical - No proven path at this time to exploit the venerability.
