The Common Vulnerability Scoring System (CVSS) is an open framework for rating the severity of software vulnerabilities. Developed by the Forum of Incident Response and Security Teams (FIRST), CVSS provides a standardized way to capture the principal characteristics of a vulnerability and produce a numerical score reflecting its severity. This score helps organizations prioritize responses and allocate resources effectively. CVSS scores range from 0 to 10, with higher scores indicating greater severity. The system considers multiple metrics, including how easily a vulnerability can be exploited and its potential impact on confidentiality, integrity, and availability. CVSS is widely used in vulnerability management programs and security advisories.