What would be the biggest downside if we just stopped considering severity low or medium security bugs CVE worthy?

@bagder Eliminating low and medium CVEs wouldn't actually make software safer; it would just blindfold defenders. It turns out that a lot of "minor" leaks can still sink the ship if they are left unmonitored.