diff options
| -rw-r--r-- | security-severity-colors.htm | 240 |
1 files changed, 240 insertions, 0 deletions
diff --git a/security-severity-colors.htm b/security-severity-colors.htm new file mode 100644 index 0000000..8733203 --- /dev/null +++ b/security-severity-colors.htm @@ -0,0 +1,240 @@ +<!DOCTYPE html>
+<html>
+ <head>
+ <title>Security severity levels</title>
+ </head>
+ <body>
+
+ <table style="border-spacing: 2px 10px">
+ <thead>
+ <tr>
+ <th>Source</th>
+ <th>Critical</th>
+ <th>High</th>
+ <th>Medium</th>
+ <th>Low</th>
+ </tr>
+ </thead>
+
+ <tbody>
+
+ <tr>
+ <th style="text-align: left">medium = blue</th>
+ </tr>
+
+ <tr>
+ <td>
+ <a href="https://infosec.mozilla.org/guidelines/risk/standard_levels">Mozilla Standard Levels</a>
+ </td>
+ <td style="background-color: #d04437">#d04437</td>
+ <td style="background-color: #ffd351">#ffd351</td>
+ <td style="background-color: #4a6785">#4a6785</td>
+ <td style="background-color: #cccccc">#cccccc</td>
+ </tr>
+
+ <tr>
+ <td>
+ <a href="https://www.rra.rocks/docs/standard_levels.html">Rapid Risk Assessment framework (RRA)</a>
+ </td>
+ <td style="background-color: #d04437">#d04437</td>
+ <td style="background-color: #ffd351">#ffd351</td>
+ <td style="background-color: #4a6785">#4a6785</td>
+ <td style="background-color: #cccccc">#cccccc</td>
+ </tr>
+
+
+ <tr>
+ <th style="text-align: left">low = green</th>
+ </tr>
+
+ <tr>
+ <td>
+ <a href="https://en.wikipedia.org/wiki/Triage_tag">Triage tag</a>
+ </td>
+ <td style="background-color: black">
+ black</td>
+ <td style="background-color: red">
+ red</td>
+ <td style="background-color: yellow">
+ yellow</td>
+ <td style="background-color: green">
+ green</td>
+ </tr>
+
+ <tr>
+ <td>
+ <a href="https://www.cisa.gov/news-events/news/cisa-national-cyber-incident-scoring-system-nciss">CISA National Cyber Incident Scoring System (NCISS)</a>
+ </td>
+ <td style="background-color: red">
+ red</td>
+ <td style="background-color: orange">
+ orange</td>
+ <td style="background-color: yellow">
+ yellow</td>
+ <td style="background-color: green">
+ green</td>
+ </tr>
+
+ <tr>
+ <td>
+ <a href="https://securitybulldog.com/blog/ultimate-guide-to-threat-severity-visualization/">SecurityBulldog</a>
+ </td>
+ <td style="background-color: #a8222d">#a8222d</td>
+ <td style="background-color: #fc851f">#fc851f</td>
+ <td style="background-color: #f1c656">#f1c656</td>
+ <td style="background-color: #add495">#add495</td>
+ </tr>
+
+ <tr>
+ <td>
+ <a href="https://www.first.org/cvss/calculator/4.0">FIRST CVSS calculator 4</a>
+ </td>
+ <td style="background-color: #e85600">#e85600</td>
+ <td style="background-color: #e85600">#e85600</td>
+ <td style="background-color: #ffb700">#ffb700</td>
+ <td style="background-color: #32b643">#32b643</td>
+ </tr>
+
+ <tr>
+ <td>
+ <a href="https://dependencytrack.org/">DependencyTrack</a>
+ </td>
+ <td style="background-color: #f86c6b">#f86c6b</td>
+ <td style="background-color: #fd8c00">#fd8c00</td>
+ <td style="background-color: #ffc107">#ffc107</td>
+ <td style="background-color: #4dbd74">#4dbd74</td>
+ </tr>
+
+ <tr>
+ <td>
+ Mogic Self-Service project list
+ </td>
+ <td style="background-color: #fb2c36">#fb2c36</td>
+ <td style="background-color: #ff6900">#ff6900</td>
+ <td style="background-color: #f0b100">#f0b100</td>
+ <td style="background-color: #00c950">#00c950</td>
+ </tr>
+
+
+ <tr>
+ <th style="text-align: left">low = grey</th>
+ </tr>
+
+ <tr>
+ <td>
+ <a href="https://docs.snyk.io/manage-risk/prioritize-issues-for-fixing/severity-levels">Snyk</a>
+ </td>
+ <td style="background-color: #ad1a1a">#ad1a1a</td>
+ <td style="background-color: #cb4f17">#cb4f17</td>
+ <td style="background-color: #d78101">#d78101</td>
+ <td style="background-color: #85869b">#85869b</td>
+ </tr>
+
+ <tr>
+ <td>
+ <a href="https://prod.docs.oit.proofpoint.com/insider_threat_intelligence_guide/identifying_risk_severity_levels.htm">Observe IT</a>
+ </td>
+ <td style="background-color: #8f0300">#8f0300</td>
+ <td style="background-color: #ff0400">#ff0400</td>
+ <td style="background-color: #ffa500">#ffa500</td>
+ <td style="background-color: #b6b6b6">#b6b6b6</td>
+ </tr>
+
+ <tr>
+ <td>
+ Mogic Self-Service report details
+ </td>
+ <td style="background-color: red">
+ red</td>
+ <td style="background-color: red">
+ red</td>
+ <td style="background-color: orange">
+ orange</td>
+ <td style="background-color: gray">
+ gray</td>
+ </tr>
+
+ <tr>
+ <td>
+ <a href="https://github.com/nextcloud/security-advisories/security/advisories">Github</a>
+ (<a href="https://github.blog/changelog/2021-07-19-codeql-code-scanning-new-severity-levels-for-security-alerts/">blog post</a>)</td>
+ <td style="background-color: #cf222e">#cf222e</td>
+ <td style="background-color: #bc4c00">#bc4c00</td>
+ <td style="background-color: #9a6700">#9a6700</td>
+ <td style="background-color: #dfe4e9">#dfe4e9</td>
+ </tr>
+
+
+ <tr>
+ <th style="text-align: left">low = yellow/orange</th>
+ </tr>
+
+ <tr>
+ <td>
+ <a href="https://docs.gitlab.com/user/application_security/security_dashboard/">Gitlab</a>
+ </td>
+ <td style="background-color: #812713">#812713</td>
+ <td style="background-color: #c02f12">#c02f12</td>
+ <td style="background-color: #c17d11">#c17d11</td>
+ <td style="background-color: #d99530">#d99530</td>
+ </tr>
+
+ <tr>
+ <td>
+ <a href="https://www.first.org/cvss/calculator/3.1">FIRST CVSS calculator 3.1</a>
+ </td>
+ <td style="background-color: #cc0500">#cc0500</td>
+ <td style="background-color: #df3d03">#df3d03</td>
+ <td style="background-color: #f9a009">#f9a009</td>
+ <td style="background-color: #ffcb0d">#ffcb0d</td>
+ </tr>
+
+ <tr>
+ <td>
+ <a href="https://connect.tenable.com/discussions/product-announcements/tenable-is-updating-the-vulnerability-severity-color-scheme-/109825">
+ Tenable
+ </a>
+ </td>
+ <td style="background-color:#91233e">#91233e</td>
+ <td style="background-color:#dd4c50">#dd4c50</td>
+ <td style="background-color:#f18c43">#f18c43</td>
+ <td style="background-color:#f8c851">#f8c851</td>
+ </tr>
+
+ <tr>
+ <td>
+ <a href="https://www.pentestpad.com/docs/report-templates/functions/cellbackgroundrender" target="_blank">
+ PentestPad
+ </a>
+ </td>
+ <td style="background-color:#0b0606">#0b0606</td>
+ <td style="background-color:#e5301e">#e5301e</td>
+ <td style="background-color:#f3bb33">#f3bb33</td>
+ <td style="background-color:#ffff6e">#ffff6e</td>
+ </tr>
+
+ <tr>
+ <td>
+ <a href="https://owasp.org/www-community/OWASP_Risk_Rating_Methodology">OWASP</a>
+ </td>
+ <td style="background-color: pink">pink</td>
+ <td style="background-color: red">red</td>
+ <td style="background-color: orange">orange</td>
+ <td style="background-color: yellow">yellow</td>
+ </tr>
+
+ <tr>
+ <td>
+ Self-Service e-mail</td>
+ <td style="background-color: red">red</td>
+ <td style="background-color: yellow">yellow</td>
+ <td> (none)</td>
+ <td>
+ (not shown)</td>
+ </tr>
+
+ </tbody>
+
+ </table>
+ </body>
+</html>
|