The privileges-required metric defines the privilege level that an attacker must have in order to successfully exploit the vulnerability. There might be some vulnerabilities that could be exploited with normal privilege levels, while others may strictly require root or administrator-level privileges for successful exploitation:
|
Parameter |
Description |
|
None |
The attacker does not require any prior privileges or access in order to carry out the attack. |
|
Low |
The attacker requires limited or minimum privileges in order to successfully execute the attack. |
|
High |
The attacker would require significant privileges such as administrator or root in order to exploit the vulnerable component. |