{"id":"https://openalex.org/W3080878745","doi":"https://doi.org/10.1145/3407023.3407038","title":"Fighting N-day vulnerabilities with automated CVSS vector prediction at disclosure","display_name":"Fighting N-day vulnerabilities with automated CVSS vector prediction at disclosure","publication_year":2020,"publication_date":"2020-08-25","ids":{"openalex":"https://openalex.org/W3080878745","doi":"https://doi.org/10.1145/3407023.3407038","mag":"3080878745"},"language":"en","primary_location":{"id":"doi:10.1145/3407023.3407038","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3407023.3407038","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 15th International Conference on Availability, Reliability and Security","raw_type":"proceedings-article"},"type":"preprint","indexed_in":["crossref"],"open_access":{"is_oa":false,"oa_status":"closed","oa_url":null,"any_repository_has_fulltext":false},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5070287841","display_name":"Cl\u00e9ment Elbaz","orcid":null},"institutions":[{"id":"https://openalex.org/I56067802","display_name":"Universit\u00e9 de Rennes","ror":"https://ror.org/015m7wh34","country_code":"FR","type":"education","lineage":["https://openalex.org/I56067802"]},{"id":"https://openalex.org/I1294671590","display_name":"Centre National de la Recherche Scientifique","ror":"https://ror.org/02feahw73","country_code":"FR","type":"government","lineage":["https://openalex.org/I1294671590"]},{"id":"https://openalex.org/I2802519937","display_name":"Institut de Recherche en Informatique et Syst\u00e8mes Al\u00e9atoires","ror":"https://ror.org/00myn0z94","country_code":"FR","type":"facility","lineage":["https://openalex.org/I1294671590","https://openalex.org/I1294671590","https://openalex.org/I1326498283","https://openalex.org/I205703379","https://openalex.org/I2802204017","https://openalex.org/I2802519937","https://openalex.org/I28221208","https://openalex.org/I4210127572","https://openalex.org/I4210159245","https://openalex.org/I56067802"]}],"countries":["FR"],"is_corresponding":true,"raw_author_name":"Cl\u00e9ment Elbaz","raw_affiliation_strings":["Univ Rennes, Inria, CNRS, IRISA, Rennes, France"],"affiliations":[{"raw_affiliation_string":"Univ Rennes, Inria, CNRS, IRISA, Rennes, France","institution_ids":["https://openalex.org/I2802519937","https://openalex.org/I56067802","https://openalex.org/I1294671590"]}]},{"author_position":"middle","author":{"id":"https://openalex.org/A5017873979","display_name":"Louis Rilling","orcid":"https://orcid.org/0000-0003-4520-6646"},"institutions":[{"id":"https://openalex.org/I95583923","display_name":"Direction G\u00e9n\u00e9rale de l'Armement","ror":"https://ror.org/04wsqd844","country_code":"FR","type":"funder","lineage":["https://openalex.org/I2799681489","https://openalex.org/I2802818602","https://openalex.org/I95583923"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Louis Rilling","raw_affiliation_strings":["DGA, Rennes, France"],"affiliations":[{"raw_affiliation_string":"DGA, Rennes, France","institution_ids":["https://openalex.org/I95583923"]}]},{"author_position":"last","author":{"id":"https://openalex.org/A5107253496","display_name":"Christine Morin","orcid":null},"institutions":[{"id":"https://openalex.org/I4210133778","display_name":"Centre Inria de l'Universit\u00e9 de Rennes","ror":"https://ror.org/04040yw90","country_code":"FR","type":"facility","lineage":["https://openalex.org/I1326498283","https://openalex.org/I4210133778"]}],"countries":["FR"],"is_corresponding":false,"raw_author_name":"Christine Morin","raw_affiliation_strings":["Inria, Rennes, France"],"affiliations":[{"raw_affiliation_string":"Inria, Rennes, France","institution_ids":["https://openalex.org/I4210133778"]}]}],"institutions":[],"countries_distinct_count":1,"institutions_distinct_count":3,"corresponding_author_ids":["https://openalex.org/A5070287841"],"corresponding_institution_ids":["https://openalex.org/I1294671590","https://openalex.org/I2802519937","https://openalex.org/I56067802"],"apc_list":null,"apc_paid":null,"fwci":4.1085,"has_fulltext":false,"cited_by_count":59,"citation_normalized_percentile":{"value":0.94859935,"is_in_top_1_percent":false,"is_in_top_10_percent":true},"cited_by_percentile_year":{"min":89,"max":100},"biblio":{"volume":null,"issue":null,"first_page":"1","last_page":"10"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T11241","display_name":"Advanced Malware Detection Techniques","score":0.9995999932289124,"subfield":{"id":"https://openalex.org/subfields/1711","display_name":"Signal Processing"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T12479","display_name":"Web Application Security Vulnerabilities","score":0.9984999895095825,"subfield":{"id":"https://openalex.org/subfields/1710","display_name":"Information Systems"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},{"id":"https://openalex.org/T10743","display_name":"Software Testing and Debugging Techniques","score":0.9977999925613403,"subfield":{"id":"https://openalex.org/subfields/1712","display_name":"Software"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/vulnerability","display_name":"Vulnerability (computing)","score":0.8259422779083252},{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.7889886498451233},{"id":"https://openalex.org/keywords/support-vector-machine","display_name":"Support vector machine","score":0.6782166361808777},{"id":"https://openalex.org/keywords/machine-learning","display_name":"Machine learning","score":0.554506242275238},{"id":"https://openalex.org/keywords/vulnerability-assessment","display_name":"Vulnerability assessment","score":0.512652575969696},{"id":"https://openalex.org/keywords/software","display_name":"Software","score":0.49972057342529297},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.4636382460594177},{"id":"https://openalex.org/keywords/data-mining","display_name":"Data mining","score":0.4414992332458496},{"id":"https://openalex.org/keywords/risk-analysis","display_name":"Risk analysis (engineering)","score":0.34781333804130554},{"id":"https://openalex.org/keywords/computer-security","display_name":"Computer security","score":0.29173600673675537}],"concepts":[{"id":"https://openalex.org/C95713431","wikidata":"https://www.wikidata.org/wiki/Q631425","display_name":"Vulnerability (computing)","level":2,"score":0.8259422779083252},{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.7889886498451233},{"id":"https://openalex.org/C12267149","wikidata":"https://www.wikidata.org/wiki/Q282453","display_name":"Support vector machine","level":2,"score":0.6782166361808777},{"id":"https://openalex.org/C119857082","wikidata":"https://www.wikidata.org/wiki/Q2539","display_name":"Machine learning","level":1,"score":0.554506242275238},{"id":"https://openalex.org/C167063184","wikidata":"https://www.wikidata.org/wiki/Q1400839","display_name":"Vulnerability assessment","level":3,"score":0.512652575969696},{"id":"https://openalex.org/C2777904410","wikidata":"https://www.wikidata.org/wiki/Q7397","display_name":"Software","level":2,"score":0.49972057342529297},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.4636382460594177},{"id":"https://openalex.org/C124101348","wikidata":"https://www.wikidata.org/wiki/Q172491","display_name":"Data mining","level":1,"score":0.4414992332458496},{"id":"https://openalex.org/C112930515","wikidata":"https://www.wikidata.org/wiki/Q4389547","display_name":"Risk analysis (engineering)","level":1,"score":0.34781333804130554},{"id":"https://openalex.org/C38652104","wikidata":"https://www.wikidata.org/wiki/Q3510521","display_name":"Computer security","level":1,"score":0.29173600673675537},{"id":"https://openalex.org/C15744967","wikidata":"https://www.wikidata.org/wiki/Q9418","display_name":"Psychology","level":0,"score":0.0},{"id":"https://openalex.org/C137176749","wikidata":"https://www.wikidata.org/wiki/Q4105337","display_name":"Psychological resilience","level":2,"score":0.0},{"id":"https://openalex.org/C199360897","wikidata":"https://www.wikidata.org/wiki/Q9143","display_name":"Programming language","level":1,"score":0.0},{"id":"https://openalex.org/C542102704","wikidata":"https://www.wikidata.org/wiki/Q183257","display_name":"Psychotherapist","level":1,"score":0.0},{"id":"https://openalex.org/C71924100","wikidata":"https://www.wikidata.org/wiki/Q11190","display_name":"Medicine","level":0,"score":0.0}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.1145/3407023.3407038","is_oa":false,"landing_page_url":"https://doi.org/10.1145/3407023.3407038","pdf_url":null,"source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"Proceedings of the 15th International Conference on Availability, Reliability and Security","raw_type":"proceedings-article"}],"best_oa_location":null,"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","id":"https://metadata.un.org/sdg/16","score":0.5400000214576721}],"awards":[],"funders":[],"has_content":{"grobid_xml":false,"pdf":false},"content_urls":null,"referenced_works_count":7,"referenced_works":["https://openalex.org/W2004584049","https://openalex.org/W2005126631","https://openalex.org/W2065890363","https://openalex.org/W2147717514","https://openalex.org/W2149764216","https://openalex.org/W2226637837","https://openalex.org/W2294973055"],"related_works":["https://openalex.org/W1883246888","https://openalex.org/W2370114625","https://openalex.org/W1756374135","https://openalex.org/W2062873522","https://openalex.org/W2947584067","https://openalex.org/W2280562859","https://openalex.org/W230721595","https://openalex.org/W3157230915","https://openalex.org/W1496728123","https://openalex.org/W2789975780"],"abstract_inverted_index":{"The":[0],"Common":[1],"Vulnerability":[2],"Scoring":[3],"System":[4],"(CVSS)":[5],"is":[6,39,72],"the":[7,12,24,31,37,91],"industry":[8],"standard":[9],"for":[10,74],"describing":[11],"characteristics":[13],"of":[14,36,54,94],"a":[15,28,43,52,81,105],"software":[16],"vulnerability":[17,29,38],"and":[18],"measuring":[19],"its":[20],"severity.":[21],"However,":[22],"during":[23],"first":[25],"days":[26],"after":[27],"disclosure,":[30],"initial":[32],"human":[33,101],"readable":[34,45,102],"description":[35],"not":[40],"available":[41,73],"as":[42],"machine":[44],"CVSS":[46,92],"vector":[47,93],"yet.":[48,78],"This":[49],"situation":[50],"creates":[51],"period":[53],"time":[55],"when":[56],"only":[57,99],"expensive":[58],"manual":[59],"analysis":[60,77],"can":[61],"be":[62],"used":[63],"to":[64,66,88],"react":[65],"new":[67,82],"vulnerabilities":[68,97],"because":[69],"no":[70],"data":[71],"cheaper":[75],"automated":[76],"We":[79],"present":[80],"technique":[83],"based":[84],"on":[85,108],"linear":[86],"regression":[87],"automatically":[89],"predict":[90],"newly":[95],"disclosed":[96],"using":[98],"their":[100],"descriptions,":[103],"with":[104],"strong":[106],"emphasis":[107],"decision":[109],"explicability.":[110],"Our":[111],"experimental":[112],"results":[113],"suggest":[114],"real":[115],"world":[116],"applicability.":[117]},"counts_by_year":[{"year":2026,"cited_by_count":2},{"year":2025,"cited_by_count":14},{"year":2024,"cited_by_count":16},{"year":2023,"cited_by_count":8},{"year":2022,"cited_by_count":7},{"year":2021,"cited_by_count":11},{"year":2020,"cited_by_count":1}],"updated_date":"2026-04-14T08:04:32.555800","created_date":"2025-10-10T00:00:00"}