Scoring Explained

In Catchify, each finding is scored based on Risk and Criticality to help you prioritize what matters most. These scores are set by our assigned pentester, aligned with your organization’s risk profile.

🔍 Scoring Breakdown

• Severity – Reflects the urgency of the issue based on its potential impact

• Impact – Describes how serious the consequences would be if exploited

• Likelihood – How likely the vulnerability is to be successfully exploited

• CVSS – A standardized score (0–10) that combines impact and likelihood into a single risk number

CVSS: A higher score means the issue is more critical and should be prioritized for remediation.

These scores are visualized in the Risk Matrix inside your Catchify portal, giving you a clear view of which vulnerabilities need urgent attention.