Version 1.1 allows threat scores to be calculated in two ways: from severities alone (i.e ignoring scopes, as in version 1.0) or based on the products of scopes and severities.
Version 1.1 allows threat scores to be calculated in two ways: from severities alone (i.e ignoring scopes, as in version 1.0) or based on the products of scopes and severities.