Order of Severities in reported vulnerabilities
The current order of severities is:
Undefined
< Info
< Unknown
< Low
< Medium
< High
< Critical
I wonder if we should change it to:
Low
< Medium
< Unknown
< High
< Critical
Related discussion on grades: #11190 (closed)
The current order is too complex I think, and we should drop
[update] and we should drop Undefined
and Info
in favor of Low
only.Undefined
in favor of Unknown
, and Info
in favor of Low
.
I also put Unknown
in the middle, as a user, I would rather want to evaluate those before the less urgent Medium
ones.
Edited by Philippe Lafoucrière