The Common Vulnerability Scoring System (CVSS) was updated to its third version earlier this year by FIRST. The Access Vector has expanded slightly with the addition of the Physical designation, which requires the attacker to physically touch the affected resource or component. The Impact vectors were enhanced to account for when sensitive systems or information are affected, such as usernames and passwords being exposed. Out of a total of 21 examples, two-thirds had their score rise, and half of those had score rise by more than 1 point.”]
Source: https://securityintelligence.com/markdown-designer-vulnerabilities-get-a-fresh-cvss-v3-look/