Perhaps something like the CVE vectors, that others have suggested? https://nvd.nist.gov/CVSS/Vector-v2.aspx It's (a bit?) extra work while getting the release out, so it would be good to hear enthusiastic support for this :) -- Senior Architect, Akamai Technologies IM: richsalz at jabber.at Twitter: RichSalz