What is CVSS?
CVSS stands for the Common Vulnerability Scoring System, an industry open standard designed to convey vulnerability severity and risk.
CVSS Scoring is an optional feature in QualysGuard. When this feature is enabled, CVSS scores are calculated for vulnerability/host pairs and displayed in your scan reports. To learn more about CVSS, visit http://www.first.org/cvss.
QualysGuard supports CVSS v2 as of January 2008 and it uses base scores from NIST’s National Vulnerability Database (NVD) when available.