CVSSv3 02/17/2017info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCVE
971754.34.3
 
 
 
NetBSD ARP Memory Leak denial of service
971156.45.37.5
 
 
QEMU Vmware VMXNET3 NIC Support Out-of-Bounds denial of serviceCVE-2017-6058
971147.56.38.8
 
 
GeniXCMS menus.control.php sql injectionCVE-2017-6065
971137.57.37.8
 
 
eParakstitajs/eParaksts Java Lib edoc File XML External EntityCVE-2017-6055
971126.47.35.5
 
 
libdwarf File dwarf_die_deliv.c memory corruptionCVE-2016-7511
971116.56.56.5
 
 
libdwarf dwarf_line_table_reader_common.c read_line_table_program memory corruptionCVE-2016-7510
971104.54.34.7
 
 
MantisBT Gravatar Plugin Content Security Policy cross site scriptingCVE-2016-7111
971097.55.39.8
 
 
Facebook HHVM WDDX Recursion denial of serviceCVE-2016-6875
971087.55.39.8
 
 
Facebook HHVM array_*_recursive denial of serviceCVE-2016-6874
971077.55.39.8
 
 
Facebook HHVM compact Recursion denial of serviceCVE-2016-6873
971068.57.39.8
 
 
Facebook HHVM implode memory corruptionCVE-2016-6872
971058.57.39.8
 
 
Facebook HHVM bcmath Integer memory corruptionCVE-2016-6871
971048.57.39.8
 
 
Facebook HHVM mb_detect_order memory corruptionCVE-2016-6870
971036.55.37.8
 
 
shadow newuidmap memory corruptionCVE-2016-6252
971025.24.36.1
 
 
SOGo Web Calendar cross site scriptingCVE-2016-6191
971014.34.34.3
 
 
SOGo Appointment information disclosureCVE-2016-6190
971004.34.34.3
 
 
SOGo Blacklist Filter information disclosureCVE-2016-6189
970995.24.36.1
 
 
MantisBT manage_custom_field_edit_page.php cross site scriptingCVE-2016-5364
970987.06.57.5
 
 
libdwarf DWARF Section dwarf_elf_access.c WRITE_UNALIGNED memory corruptionCVE-2016-5044
970977.06.57.5
 
 
libdwarf DWARF Section dwarf_dealloc memory corruptionCVE-2016-5043

Do you want to use VulDB in your project?

Use the official API to access entries easily!