Common Mitigation Enumeration

A taxonomy of defensive security controls mapped to CWE weaknesses and CVSS vector attenuation. Each CME entry describes a verifiable control that deterministically modifies CVSS environmental scoring.

104
Total Entries
68
Harden
21
Isolate
9
Detect
3
Evict
3
Restore
Harden Harden 68 entries
Application Controls
Application Input Validation
Credential Hardening
Cryptographic Controls
Filesystem Hardening
Kernel Hardening
Mandatory Access Control
Network Isolation
Protocol Hardening
Syscall & BPF Controls
Isolate Isolate 21 entries
Application Controls
Application Input Validation
Container Isolation
Filesystem Hardening
Network Isolation
Privilege Isolation
Detect Detect 9 entries
Integrity Detection
Runtime Detection
Evict Evict 3 entries
Patch Management
Restore Restore 3 entries
Recovery Controls