I am looking for suggestions of alternatives to vulnerability scoring systems such as CVSS & DREAD.
I have found that DREAD is too subjective to work and CVSS was ranking everything too highly and doesn't really fit.
I'm thinking about some alternatives but can't seem to find many, or much information on why they are better than CVSS?