The National Institute of Standards and Technology has issued a guide to assess software feature misuse. Intentional or accidental misuse of software features has the potential to leak sensitive information, corrupt data or reduce system availability. The Common Misuse Scoring System is designed to work with existing scoring systems – Common Vulnerability and Common Configuration – developed by NIST to categorize software flaw vulnerabilities and security configuration issues. NIST categorizes software vulnerabilities in three general categories:Software flaws, such as coding errors that allow security breaches.”]
Source: https://www.cuinfosecurity.com/gauging-severity-software-feature-misuse-a-4993