In CVSS v. 3.1, while vulnerabilities are typically scored on the Base and Temporal metrics by the broader security community, the scoring on Environmental Metrics is to be done by analysts at the end-user organizations. In CVSS v. 3.1, while vulnerabilities are typically scored on the Base and Temporal metrics by the broader security community, the scoring on Environmental Metrics is to be done by analysts at the end-user organizations. True False