This standard specifies the identification and description information of network security vulnerabilities (hereinafter referred to as "vulnerabilities"). This standard is applicable to all related activities such as vulnerability release and management of vulnerability database construction, product production, research and development, evaluation and network operation.
GB/T 28458-2020 Referenced Document
GB/T 25069 Information security techniques—Terminology*, 2022-03-09 Update
GB/T 7408 Data elements and interchange formats-Information interchange-Representation of dates and times
GB/T 28458-2020 history
2020GB/T 28458-2020 Information security technology—Cybersecurity vulnerability identification and description specification
2012GB/T 28458-2012 Information security technology.Vulnerability identification and description specification