{"id":"https://openalex.org/W4400942790","doi":"https://doi.org/10.7148/2024-0569","title":"Expressing impact of vulnerabilities: an expert-filled dataset and vector changer framework for modelling multistage attacks, based on cve, cvss and cwe","display_name":"Expressing impact of vulnerabilities: an expert-filled dataset and vector changer framework for modelling multistage attacks, based on cve, cvss and cwe","publication_year":2024,"publication_date":"2024-06-07","ids":{"openalex":"https://openalex.org/W4400942790","doi":"https://doi.org/10.7148/2024-0569"},"language":"en","primary_location":{"id":"doi:10.7148/2024-0569","is_oa":true,"landing_page_url":"https://doi.org/10.7148/2024-0569","pdf_url":"http://www.scs-europe.net/dlib/2024/ecms2024acceptedpapers/0569_secmos_ecms2024_0048.pdf","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ECMS 2024 Proceedings edited by Daniel Grzonka, Natalia Rylko, Grazyna Suchacka, Vladimir Mityushev","raw_type":"proceedings-article"},"type":"article","indexed_in":["crossref"],"open_access":{"is_oa":true,"oa_status":"gold","oa_url":"http://www.scs-europe.net/dlib/2024/ecms2024acceptedpapers/0569_secmos_ecms2024_0048.pdf","any_repository_has_fulltext":null},"authorships":[{"author_position":"first","author":{"id":"https://openalex.org/A5077823397","display_name":"Tomasz Machalewski","orcid":"https://orcid.org/0000-0002-2124-996X"},"institutions":[],"countries":[],"is_corresponding":true,"raw_author_name":"Tomasz Machalewski","raw_affiliation_strings":[],"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5080936202","display_name":"Marcin Szymanek","orcid":"https://orcid.org/0000-0002-6587-4601"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Marcin Szymanek","raw_affiliation_strings":[],"affiliations":[]},{"author_position":"middle","author":{"id":"https://openalex.org/A5046747432","display_name":"Adam Czubak","orcid":"https://orcid.org/0000-0003-1336-2839"},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Adam Czubak","raw_affiliation_strings":[],"affiliations":[]},{"author_position":"last","author":{"id":"https://openalex.org/A5105036135","display_name":"Tomasz Turba","orcid":null},"institutions":[],"countries":[],"is_corresponding":false,"raw_author_name":"Tomasz Turba","raw_affiliation_strings":[],"affiliations":[]}],"institutions":[],"countries_distinct_count":0,"institutions_distinct_count":4,"corresponding_author_ids":["https://openalex.org/A5077823397"],"corresponding_institution_ids":[],"apc_list":null,"apc_paid":null,"fwci":0.7128,"has_fulltext":true,"cited_by_count":2,"citation_normalized_percentile":{"value":0.71315257,"is_in_top_1_percent":false,"is_in_top_10_percent":false},"cited_by_percentile_year":{"min":95,"max":96},"biblio":{"volume":null,"issue":null,"first_page":"569","last_page":"578"},"is_retracted":false,"is_paratext":false,"is_xpac":false,"primary_topic":{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.7955999970436096,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}},"topics":[{"id":"https://openalex.org/T10400","display_name":"Network Security and Intrusion Detection","score":0.7955999970436096,"subfield":{"id":"https://openalex.org/subfields/1705","display_name":"Computer Networks and Communications"},"field":{"id":"https://openalex.org/fields/17","display_name":"Computer Science"},"domain":{"id":"https://openalex.org/domains/3","display_name":"Physical Sciences"}}],"keywords":[{"id":"https://openalex.org/keywords/computer-science","display_name":"Computer science","score":0.6786067485809326},{"id":"https://openalex.org/keywords/artificial-intelligence","display_name":"Artificial intelligence","score":0.3763265013694763}],"concepts":[{"id":"https://openalex.org/C41008148","wikidata":"https://www.wikidata.org/wiki/Q21198","display_name":"Computer science","level":0,"score":0.6786067485809326},{"id":"https://openalex.org/C154945302","wikidata":"https://www.wikidata.org/wiki/Q11660","display_name":"Artificial intelligence","level":1,"score":0.3763265013694763}],"mesh":[],"locations_count":1,"locations":[{"id":"doi:10.7148/2024-0569","is_oa":true,"landing_page_url":"https://doi.org/10.7148/2024-0569","pdf_url":"http://www.scs-europe.net/dlib/2024/ecms2024acceptedpapers/0569_secmos_ecms2024_0048.pdf","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ECMS 2024 Proceedings edited by Daniel Grzonka, Natalia Rylko, Grazyna Suchacka, Vladimir Mityushev","raw_type":"proceedings-article"}],"best_oa_location":{"id":"doi:10.7148/2024-0569","is_oa":true,"landing_page_url":"https://doi.org/10.7148/2024-0569","pdf_url":"http://www.scs-europe.net/dlib/2024/ecms2024acceptedpapers/0569_secmos_ecms2024_0048.pdf","source":null,"license":null,"license_id":null,"version":"publishedVersion","is_accepted":true,"is_published":true,"raw_source_name":"ECMS 2024 Proceedings edited by Daniel Grzonka, Natalia Rylko, Grazyna Suchacka, Vladimir Mityushev","raw_type":"proceedings-article"},"sustainable_development_goals":[{"display_name":"Peace, Justice and strong institutions","score":0.4000000059604645,"id":"https://metadata.un.org/sdg/16"}],"awards":[],"funders":[{"id":"https://openalex.org/F4320335039","display_name":"Narodowe Centrum Bada\u0144 i Rozwoju","ror":"https://ror.org/05pwfyy15"}],"has_content":{"pdf":true,"grobid_xml":false},"content_urls":{"pdf":"https://content.openalex.org/works/W4400942790.pdf"},"referenced_works_count":0,"referenced_works":[],"related_works":["https://openalex.org/W4391375266","https://openalex.org/W2748952813","https://openalex.org/W2390279801","https://openalex.org/W2358668433","https://openalex.org/W4396701345","https://openalex.org/W2376932109","https://openalex.org/W2001405890","https://openalex.org/W4396696052","https://openalex.org/W2382290278","https://openalex.org/W4395014643"],"abstract_inverted_index":{"In":[0],"this":[1],"work":[2],"we":[3,20,61,104],"focus":[4],"on":[5,96],"measuring":[6],"and":[7,55,71,125],"attributing":[8],"impacts":[9],"to":[10,40,116,133],"vulnerabilities.":[11,44,117],"We":[12,118],"do":[13],"it":[14],"in":[15,131],"a":[16,22,28,36,106],"two-fold":[17],"way.":[18],"First,":[19],"introduce":[21],"concept":[23],"of":[24,31,35,42,52,57,100,113,127],"Vector":[25,72,114],"Changer":[26],"\u2013":[27],"CVSS-based":[29],"measure":[30],"how":[32],"successful":[33],"exploitation":[34],"vulnerability":[37,92],"could":[38],"lead":[39],"usage":[41],"consecutive":[43,46],"The":[45,74],"nature":[47],"being":[48],"crucial":[49],"for":[50,78,122],"analysis":[51],"multi-stage":[53],"attacks":[54],"creation":[56],"attack":[58],"graphs.":[59],"Secondly,":[60],"present":[62,105,119],"an":[63],"expert-filled":[64],"dataset":[65,75,124],"containing":[66],"CVE-attributed:":[67],"Technical":[68],"Impacts,":[69],"CVSS":[70],"Changer.":[73],"contains":[76],"data":[77],"22":[79],"CVEs,":[80],"each":[81],"filled":[82],"separately":[83],"by":[84],"three":[85],"experts":[86],"(66":[87],"CVE":[88],"datapoints":[89],"total).":[90],"Each":[91],"has":[93],"been":[94],"assessed":[95],"four":[97],"increasing":[98],"levels":[99],"information":[101],"availability.":[102],"Finally,":[103],"lookup":[107,129],"table":[108,130],"that":[109],"enables":[110],"easy":[111],"attribution":[112],"Changers":[115],"initial":[120],"findings":[121],"our":[123,128],"efficiency":[126],"respect":[132],"the":[134],"formulated":[135],"dataset.":[136]},"counts_by_year":[{"year":2025,"cited_by_count":2}],"updated_date":"2026-03-20T23:20:44.827607","created_date":"2025-10-10T00:00:00"}