GB/T 28458-2012

Abolished

Information security technology - Vulnerability identification and description specification

信息安全技术安全漏洞标识与描述规范

Standard Type

GBT

ICS

35.040

CCS

L80

Status

Abolished

Issue Date

2012-06-29

Implementation

2012-10-01

Centralized Committee

国家标准委

Issuing Authority

中华人民共和国国家质量监督检验检疫总局、中国国家标准化管理委员会

Application Summary AI generated

This standard defines a unified format for identifying and describing security vulnerabilities in information systems. It is applied by software developers, security vendors, and vulnerability databases in China to ensure consistent vulnerability naming, classification, and reporting across products and services. The specification supports vulnerability management, patch development, and security incident response in IT environments.

Related Standards

GB/T 21049-2007 Chinese-sensible code GB/T 19245-2003 Specification for information interchange of electronic business card GB/T 16986-2003 Application identifiers for EAN·UCC system GB/T 18391.2-2003 Information technology--Specification and standardization of data elements--Part 2: Classification for data elements GB/T 16829-2003 Information technology--Automatic identification and data capture techniques--Bar code symbology specifications--Interleaved 2 of 5 GB/T 19253-2003 Information technology--Notation of format for data element values GB/T 2261.2-2003 Classification and codesof basic personal information--Part 2: Codes for marriage status GB/T 2261.3-2003 Classification and codesof basic personal information--Part 3: Codes for state of health

Transparency note: The application summary and key sentences on this page were automatically generated by AI from the standard's original text. This content has not been human-verified and should not be used for compliance or regulatory purposes. Always refer to the official standard document from the issuing authority.