MACHINE LEARNING SYSTEM FOR DETERMINING A SECURITY VULNERABILITY IN COMPUTER SOFTWARE

摘要

Methods, computer-readable media, software, and apparatuses may retrieve, from an industry standard setting scoring system and for a vulnerability, a temporal score based on a pre-revision version of a scoring system, and predict, based on a machine learning model and based on the temporal score for the vulnerability, an updated temporal score based on a post-revision version of the scoring system. A mitigating factor score, indicative of a mitigation applied to the vulnerability by an enterprise organization, may be determined. A risk score may be generated for each vulnerability, as a composite of the updated temporal score and the mitigating factor score. The risk scores for vulnerabilities in a collection of vulnerabilities may be aggregated to determine an enterprise risk score for the enterprise organization. In some instances, the enterprise risk score may be displayed via a graphical user interface.