CVSSv2 April 2021info

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

PublishedVDBNVDVendResVulnerabilityCTICVE
04/07/20217.5
 
 
 
GNU Chess PGN cmd.cc cmd_pgnreplay buffer overflow4.10CVE-2021-30184
04/07/20215.2
 
 
 
GNOME file-roller Extraction fr-archive-libarchive.c pathname traversal4.05CVE-2020-36314
04/07/20216.5
 
 
 
PHP-Nuke User Registration sql injection5.39-CVE-2021-30177
04/07/20217.5
 
 
 
D-Link DSL-320B-D1 login.xgi buffer overflow5.95-CVE-2021-26709
04/07/20215.2
 
 
 
EikiSoft Archive Collectively Operation Utility ZIP Archive pathname traversal5.86-CVE-2021-20692
04/07/20214.0
 
 
 
Yomi-Search cross site scripting4.70-CVE-2021-20691
04/07/20214.0
 
 
 
Yomi-Search cross site scripting4.70-CVE-2021-20690
04/07/20214.0
 
 
 
Yomi-Search cross site scripting4.53-CVE-2021-20689
04/07/20214.0
 
 
 
Click Ranker cross site scripting4.66-CVE-2021-20688
04/07/20214.0
 
 
 
Kagemai cross-site request forgery4.91-CVE-2021-20687
04/07/20214.0
 
 
 
Kagemai cross site scripting2.85-CVE-2021-20686
04/07/20214.0
 
 
 
Kagemai cross site scripting2.90-CVE-2021-20685
04/07/20214.0
 
 
 
MagazinegerZ cross site scripting2.07-CVE-2021-20684
04/07/20216.8
 
 
 
Qualcomm Snapdragon Compute IO Control memory corruption2.72-CVE-2021-1892
04/07/20217.8
 
 
 
Qualcomm Snapdragon Auto RTCP Packet denial of service1.94-CVE-2020-11255
04/07/20210.8
 
 
 
Qualcomm Snapdragon Auto TrustZone information disclosure2.20-CVE-2020-11252
04/07/20217.5
 
 
 
Qualcomm Snapdragon Auto, Snapdragon Compute, Snapdragon Connectivity, Snapdragon Consumer IOT, Snapdragon Industrial IOT, Snapdragon IoT, Snapdragon Mobile, Snapdragon Voice & Music, Snapdragon Wearables DTMF Payload out-of-bounds read2.89-CVE-2020-11251
04/07/20216.5
 
 
 
Qualcomm Snapdragon Auto out-of-bounds read2.42-CVE-2020-11247
04/07/20216.8
 
 
 
Qualcomm Snapdragon Auto Suspend Mode double free2.85-CVE-2020-11246
04/07/20216.8
 
 
 
Qualcomm Snapdragon Auto NS EL2 access control2.80-CVE-2020-11245
04/07/20215.0
 
 
 
Qualcomm Snapdragon Auto RRC denial of service2.37-CVE-2020-11243
04/07/20216.8
 
 
 
Qualcomm Snapdragon Industrial IOT/Snapdragon Mobile SDI Local Privilege Escalation2.50-CVE-2020-11242
04/07/20216.8
 
 
 
Qualcomm Snapdragon Auto Histogram memory corruption2.42-CVE-2020-11237
04/07/20216.8
 
 
 
Qualcomm Snapdragon Auto Dimensions memory corruption2.37-CVE-2020-11236
04/07/20216.8
 
 
 
Qualcomm Snapdragon Auto Socket Event use after free3.58-CVE-2020-11234
04/07/20216.5
 
 
 
Qualcomm Snapdragon Compute Thread heap-based overflow2.20-CVE-2020-11231
04/07/20216.8
 
 
 
Qualcomm Snapdragon Connectivity RPM memory corruption2.33-CVE-2020-11210
04/07/20217.5
 
 
 
Qualcomm Snapdragon Auto SDP out-of-bounds read2.33-CVE-2020-11191
04/07/20212.3
 
 
 
Linux Kernel SynIC Hyper-V hyperv.c synic_get null pointer dereference2.50-CVE-2021-30178
04/07/20214.0
 
 
 
DMA Softlab Radius Manager admin.php cross-site request forgery2.16-CVE-2021-30147
04/07/20214.9
 
 
 
Linux Kernel KVM Subsystem kvm-s390.c unknown vulnerability2.46-CVE-2020-36313
04/07/20212.3
 
 
 
Linux Kernel kvm_main.c kvm_io_bus_unregister_dev memory leak2.24-CVE-2020-36312
04/07/20212.3
 
 
 
Linux Kernel SEV VM sev.c denial of service1.99-CVE-2020-36311
04/07/20212.3
 
 
 
Linux Kernel svm.c set_memory_region_test infinite loop2.07-CVE-2020-36310
04/07/20215.2
 
 
 
Proofpoint Insider Threat Management Server Web Console improper authorization3.32-CVE-2021-27900
04/07/20215.1
 
 
 
Proofpoint Insider Threat Management Agents channel accessible3.28-CVE-2021-27899
04/07/20212.7
 
 
 
Teradici PCoIP Connection Manager and Security Gateway log file3.07-CVE-2021-25692
04/07/20214.9
 
 
 
Proofpoint Insider Threat Management Server Web Console xml external entity reference3.45-CVE-2021-22158
04/07/20214.0
 
 
 
Proofpoint Insider Threat Management Server cross site scripting3.49-CVE-2021-22157
04/07/20214.6
 
 
 
projen Project Configuration Remote Privilege Escalation3.02-CVE-2021-21423
04/07/20212.3
 
 
 
Syncthing Relay Messages denial of service4.24-CVE-2021-21404
04/07/20214.9
 
 
 
ngx_http_lua_module API unknown vulnerability3.97-CVE-2020-36309
04/07/20215.2
 
 
 
OpenIAM permission3.97-CVE-2020-13422
04/07/20215.2
 
 
 
OpenIAM access control4.58-CVE-2020-13421
04/07/20216.0
 
 
 
OpenIAM Groovy Script Remote Privilege Escalation2.68-CVE-2020-13420
04/07/20215.2
 
 
 
OpenIAM Batch pathname traversal2.81-CVE-2020-13419
04/07/20214.0
 
 
 
OpenIAM Add New User cross site scripting2.89-CVE-2020-13418
04/07/20214.0
 
 
 
Seafile Share of Library cross site scripting3.16-CVE-2021-30146
04/07/20214.0
 
 
 
LiquidFiles Send Email cross site scripting2.64-CVE-2021-30140
04/07/20212.3
 
 
 
phpseclib RSA PKCS#1 v1.5 Signature Verification signature verification3.41-CVE-2021-30130

Interested in the pricing of exploits?

See the underground prices here!