基于BiGRU TextCNN框架的漏洞自动分类技术研究OA北大核心CSTPCD

Common Vulnerabilities and Exposures(CVE)serve as a repository for recording known vulnerabilities with standardized descriptions.Utilizing Common Weakness Enumeration(CWE)to classify vulnerabilities,it provides richer background knowledge and more detailed mitigation measures.However,due to the negligence on manual classification and the evolution of vulnerabilities.Additionally,the ever-increasing number of vulnerabilities presents a substantial challenge to the efficiency and accuracy of manual classification.To address these issues,we propose a vulnerability classification framework based on BiGRU TextCNN model,which processes,trains,predicts to automatically classify vulnerabilities into weaknesses based on the description of vulnerability.To validate the performance and feasibility of the proposed framework,we conduct comparison experiments on different text classification models and demonstrate the correctness of the proposed method by predicting vulnerabilities'classifications utilizing the propsosed framework.