It seems that this has been asked/discussed before, but not for a few years, so I was hoping there would be an update. Our vulnerability management policy uses CVSS v3 categorization, and I started setting up SLA Goals to match. However, Query Builder only has one filter for CVSS, and I assume that it’s CVSS 2, since InsightVM uses those three severity levels internally. Does anyone have a workaround for this, or information on the roadmap for greater implementation of CVSS 3?
Thanks!