CIRCL
/

vulnerability-severity-classification-roberta-base

@@ -1,6 +1,6 @@
 ---
 library_name: transformers
-license: mit
 base_model: roberta-base
 tags:
 - generated_from_trainer
@@ -9,30 +9,59 @@ metrics:
 model-index:
 - name: vulnerability-severity-classification-roberta-base
   results: []
 ---
-<!-- This model card has been generated automatically according to the information the Trainer had access to. You
-should probably proofread and complete it, then remove this comment. -->
-# vulnerability-severity-classification-roberta-base
-This model is a fine-tuned version of [roberta-base](https://huggingface.co/roberta-base) on an unknown dataset.
-It achieves the following results on the evaluation set:
-- Loss: 0.5104
-- Accuracy: 0.8285
 ## Model description
 More information needed
-## Intended uses & limitations
-More information needed
-## Training and evaluation data
-More information needed
 ## Training procedure
 ### Training hyperparameters
@@ -62,4 +91,4 @@ The following hyperparameters were used during training:
 - Transformers 4.55.2
 - Pytorch 2.8.0+cu128
 - Datasets 4.0.0
-- Tokenizers 0.21.4

 ---
 library_name: transformers
+license: cc-by-4.0
 base_model: roberta-base
 tags:
 - generated_from_trainer
 model-index:
 - name: vulnerability-severity-classification-roberta-base
   results: []
+datasets:
+- CIRCL/vulnerability-scores
 ---
+# VLAI: A RoBERTa-Based Model for Automated Vulnerability Severity Classification
+# Severity classification
+This model is a fine-tuned version of [roberta-base](https://huggingface.co/roberta-base) on the dataset [CIRCL/vulnerability-scores](https://huggingface.co/datasets/CIRCL/vulnerability-scores).
+The model was presented in the paper [VLAI: A RoBERTa-Based Model for Automated Vulnerability Severity Classification](https://huggingface.co/papers/2507.03607) [[arXiv](https://arxiv.org/abs/2507.03607)].
+**Abstract:** VLAI is a transformer-based model that predicts software vulnerability severity levels directly from text descriptions. Built on RoBERTa, VLAI is fine-tuned on over 600,000 real-world vulnerabilities and achieves over 82% accuracy in predicting severity categories, enabling faster and more consistent triage ahead of manual CVSS scoring. The model and dataset are open-source and integrated into the Vulnerability-Lookup service.
+You can read [this page](https://www.vulnerability-lookup.org/user-manual/ai/) for more information.
 ## Model description
+- Loss: 0.5104
+- Accuracy: 0.8285
 More information needed
+It is a classification model and is aimed to assist in classifying vulnerabilities by severity based on their descriptions.
+## How to get started with the model
+```python
+from transformers import AutoModelForSequenceClassification, AutoTokenizer
+import torch
+labels = ["low", "medium", "high", "critical"]
+model_name = "CIRCL/vulnerability-severity-classification-roberta-base"
+tokenizer = AutoTokenizer.from_pretrained(model_name)
+model = AutoModelForSequenceClassification.from_pretrained(model_name)
+model.eval()
+test_description = "SAP NetWeaver Visual Composer Metadata Uploader is not protected with a proper authorization, allowing unauthenticated agent to upload potentially malicious executable binaries \
+that could severely harm the host system. This could significantly affect the confidentiality, integrity, and availability of the targeted system."
+inputs = tokenizer(test_description, return_tensors="pt", truncation=True, padding=True)
+# Run inference
+with torch.no_grad():
+    outputs = model(**inputs)
+    predictions = torch.nn.functional.softmax(outputs.logits, dim=-1)
+# Print results
+print("Predictions:", predictions)
+predicted_class = torch.argmax(predictions, dim=-1).item()
+print("Predicted severity:", labels[predicted_class])
+```
 ## Training procedure
 ### Training hyperparameters
 - Transformers 4.55.2
 - Pytorch 2.8.0+cu128
 - Datasets 4.0.0
+- Tokenizers 0.21.4