This section describes two types of security scoring methods that are used in Containers. What to read next Kubernetes Risk Severity ScoringRisk Severity is a metric that represents the risk of security vulnerability for your Kubernetes workload. It uses the Kubernetes Common Configuration Scoring System (KCCSS), which is a framework for rating security risks associated with misconfigurations. Risk Evaluation for Container ImagesThe Common Vulnerability Scoring System (CVSS) is a standard measurement system for describing characteristics and severity of software vulnerabilities. Every vulnerability is assigned a risk score of between 0.0 (no risk) and 10.0 (maximum risk). Color Indicators for Image Vulnerabilities ScoringThe Common Vulnerability Scoring System (CVSS) is used for estimating the severity of discovered vulnerabilities. In addition to the risk scores that are defined in CVSS, the Unknown category displays in the Carbon Black Cloud console. Parent topic: Monitoring and Analyzing Containers