CVSSv2 August 2020info

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

PublishedVDBNVDVendResVulnerabilityCTICVE
08/31/20205.07.8
 
 
LG Mobile Devices Key Log information exposure0.01CVE-2020-25065
08/31/20205.05.0
 
 
LG Mobile Devices Automated Testing unknown vulnerability0.05CVE-2020-25064
08/31/20205.05.0
 
 
LG Mobile Devices input validation0.00CVE-2020-25063
08/31/20207.57.5
 
 
LG Mobile Devices LGTelephonyProvider privileges management0.04CVE-2020-25062
08/31/20207.57.5
 
 
LG Mobile Devices VZW Network privileges management0.01CVE-2020-25061
08/31/20204.14.6
 
 
LG Mobile Devices Privileges privileges management0.07CVE-2020-25060
08/31/20205.05.0
 
 
LG Mobile Devices input validation0.02CVE-2020-25059
08/31/20207.57.5
 
 
LG Mobile Devices network_management Service privileges management0.03CVE-2020-25058
08/31/20207.57.5
 
 
LG Mobile Devices MDMService privileges management0.05CVE-2020-25057
08/31/20207.55.0
 
 
Samsung Galaxy S20 HAL unusual condition0.06CVE-2020-25056
08/31/20207.57.5
 
 
Samsung Mobile Devices Persona Service authorization0.07CVE-2020-25055
08/31/20206.86.4
 
 
Samsung Mobile Devices Exynos Modem Chipset input validation0.06CVE-2020-25054
08/31/20207.57.5
 
 
Samsung Mobile Devices RKP code injection0.07CVE-2020-25053
08/31/20206.87.5
 
 
Samsung Mobile Devices H-Arx input validation0.05CVE-2020-25052
08/31/20207.55.0
 
 
Samsung Mobile Devices Factory Reset Protection privileges management0.00CVE-2020-25051
08/31/20205.05.0
 
 
Samsung Mobile Devices CMC Service information disclosure0.14CVE-2020-25050
08/31/20207.57.5
 
 
Samsung Mobile Devices StatusBarService authorization0.07CVE-2020-25049
08/31/20201.92.1
 
 
Samsung Mobile Devices Lockscreen injection0.07CVE-2020-25048
08/31/20201.22.1
 
 
Samsung Mobile Devices S Secure App improper authentication0.02CVE-2020-25047
08/31/20202.12.1
 
 
Samsung Mobile Devices USB Driver Log log file0.05CVE-2020-25046
08/31/20206.56.5
 
 
ZyXEL VMG5313-B30B code injection0.05CVE-2020-24354
08/31/20205.05.0
 
 
SICK Bulkscan LMS111 AutoIP denial of service0.06CVE-2020-2075
08/31/20204.47.2
 
 
QEMU USB Emulator do_token_out out-of-bounds read0.00CVE-2020-14364
08/31/20204.64.6
 
 
Schneider Electric SoMove Access Control default permission0.06CVE-2020-7527
08/31/20206.06.5
 
 
Schneider Electric PowerChute Business Edition input validation0.04CVE-2020-7526
08/31/20202.65.0
 
 
Schneider Electric spaceLYnk/Wiser for KNX Brute Force excessive authentication0.10CVE-2020-7525
08/31/20205.05.0
 
 
Schneider Electric Modicon M218 Logic Controller IPv4 Packet out-of-bounds write0.01CVE-2020-7524
08/31/20204.14.4
 
 
Schneider Electric Modbus Serial Driver privileges management0.07CVE-2020-7523
08/31/20207.57.5
 
 
Schneider Electric SFAPV9601 APC Easy UPS On-Line Software path traversal0.01CVE-2020-7522
08/31/20207.57.5
 
 
Schneider Electric SFAPV9601 APC Easy UPS On-Line Software FileUploadServlet path traversal0.06CVE-2020-7521
08/31/20203.8
 
 
 
RabbitMQ Security Vulnerability uncontrolled search path0.09CVE-2020-5419
08/31/20204.42.1
 
 
IBM Spectrum Scale Kernel argument injection0.00CVE-2020-4492
08/31/20206.810.0
 
 
Zoho ManageEngine Exchange Reporter Plus improper authentication0.05CVE-2020-24786
08/31/20204.34.3
 
 
Chamber Dashboard Business Directory Plugin cross site scripting0.04CVE-2020-24699
08/31/20206.48.3
 
 
TP-LINK TL-WA855RE V5 Access Control missing authentication0.00CVE-2020-24363
08/31/20206.85.0
 
 
projectworlds Online Book Store Admin Panel hard-coded credentials0.05CVE-2020-24115
08/31/20204.34.3
 
 
WP GDPR Plugin controller-comments.php Stored cross site scripting0.09CVE-2020-20628
08/31/20206.85.0
 
 
GiveWP Plugin Settings admin-actions.php missing authentication0.02CVE-2020-20627
08/31/20203.53.5
 
 
Lara Google Analytics Plugin lara-google-analytics.php Stored cross site scripting0.00CVE-2020-20626
08/31/20206.85.0
 
 
Sliced Invoices Plugin class-sliced.php sql injection0.02CVE-2020-20625

Interested in the pricing of exploits?

See the underground prices here!