CVSSv2 05/09/2022

VulDB

≤10
≤20
≤34
≤410
≤53
≤62
≤71
≤88
≤91
≤101

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDVDBNVDVendResVulnerabilityCTICVE
1992935.0
 
 
 
IBM Navigator for i Web Interface access control0.00CVE-2022-22481
1992922.7
 
 
 
Brocade SANNav SSH Password log file0.00CVE-2022-28161
1992912.7
 
 
 
Brocade SANnav REST API log file0.04CVE-2022-28162
1992904.9
 
 
 
htmldoc image.cxx image_load_jpeg integer overflow0.05CVE-2022-27114
1992893.3
 
 
 
Easily Generate Rest API Url Plugin cross site scripting0.00CVE-2022-1338
1992883.3
 
 
 
Slide Anything Plugin Description cross site scripting0.00CVE-2022-1303
1992874.0
 
 
 
Vertical Scroll Recent Post Plugin cross site scripting0.00CVE-2022-1171
1992863.3
 
 
 
Popup Maker Plugin cross site scripting0.11CVE-2022-1104
1992854.0
 
 
 
Themify Post Type Builder Search Addon Plugin cross site scripting0.00CVE-2022-1047
1992843.3
 
 
 
IgniteUp Plugin cross site scripting0.05CVE-2022-0898
1992833.3
 
 
 
WP Social Buttons Plugin cross site scripting0.05CVE-2022-0874
1992824.0
 
 
 
Admin Menu Editor Plugin cross site scripting0.05CVE-2022-0625
1992814.6
 
 
 
Personal Dictionary Plugin sql injection0.05CVE-2022-1013
1992807.5
 
 
 
SEMA API Plugin AJAX Action sql injection0.00CVE-2022-0836
1992797.5
 
 
 
WP Video Gallery Plugin sql injection0.00CVE-2022-0826
1992787.5
 
 
 
BadgeOS Plugin sql injection0.03CVE-2022-0817
1992777.5
 
 
 
MapSVG Plugin REST Endpoint sql injection0.00CVE-2022-0592
1992762.9
 
 
 
Supsystic Popup Plugin information disclosure0.05CVE-2022-0424
1992757.5
 
 
 
Order Listener for WooCommerce Plugin sql injection0.00CVE-2022-0948
1992744.0
 
 
 
WPGraphQL Plugin GraphQL Query access control0.04CVE-2019-25060
1992735.5
 
 
 
IBM Robotic Process Automation Queue denial of service0.00CVE-2022-22319
1992722.6
 
 
 
IBM Cloud Pak System inadequate encryption0.05CVE-2021-20479
1992717.5
 
 
 
microweber access control0.00CVE-2022-1631
1992706.5
 
 
 
Shenzhen Ejoin ACOM508/ACOM516/ACOM532 Manual Ping Form command injection0.04CVE-2022-23332
1992699.0
 
 
 
Galleon NTS-6002 Web-Management Interface os command injection0.00CVE-2022-27224
1992684.0
 
 
 
PyScript pyscriptjs source code0.05CVE-2022-30286
19926710.0
 
 
 
Solana rBPF sdiv Instruction calculation0.21CVE-2022-23066
1992667.5
 
 
 
Rarlab UnRAR Unpack pathname traversal0.05CVE-2022-30333
1992655.2
 
 
 
PyPI marcador backdoor0.00CVE-2022-28470
1992647.5
 
 
 
ImageMagick buffer overflow0.05CVE-2022-28463

Want to stay up to date on a daily basis?

Enable the mail alert feature now!