Skip to content

Severity levels of IPS signatures

Sophos LABS follows these formulas to calculate the severity level. In certain instances exceptions may not fit the formulas provided. You can then classify the severity level differently.

Critical: Covers critical vulnerabilities of popular vendors’ products or software whose CVSS score (X) is 9 ≤ X ≤ 10.

Major: Covers significant vulnerabilities of various vendors’ products or software whose CVSS score (X) is 7 ≤ X < 9.

Moderate: Covers medium impact vulnerabilities of various vendors’ products or software whose CVSS score (X) is 4 ≤ X < 7.

Minor: Signatures in this category are either parent signatures or cover less impactful vulnerabilities of various vendors’ products or software whose CVSS score (X) is 1 ≤ X < 4.

Warning: Signatures in this category signify a particular kind of traffic identified within the network. Action for this category is always to alert.