Impact

CVSS (Common Vulnerability Scoring System) is the industry-standard framework used to score the severity of cybersecurity vulnerabilities. This SECMONS glossary entry explains CVSS v3.1 structure, base metrics, vectors, scoring ranges, and how defenders should interpret CVSS in real-world risk decisions.

Remote Code Execution (RCE) allows an attacker to execute arbitrary code on a target system from a remote location. This SECMONS glossary entry explains how RCE occurs, how it differs from other impacts, how it is typically exploited, and why RCE-class vulnerabilities demand immediate attention.