CVSSv3 01/18/2018info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCTICVE
1122275.24.36.1
 
 
WordPress Flash Fallback File mediaelement cross site scripting0.05CVE-2018-5776
1122265.24.36.1
 
 
markdown2 Escape cross site scripting0.05CVE-2018-5773
1122255.45.35.5
 
 
Exiv2 tif File image.cpp printIFDStructure memory corruption0.05CVE-2018-5772
1122247.05.38.8
 
 
libav AVI File avpacket.c av_packet_ref memory corruption0.00CVE-2018-5766
1122237.37.86.7
 
 
Cisco StarOS CLI os command injection0.00CVE-2018-0115
1122225.35.35.3
 
 
Cisco WebEx Meetings Server information disclosure0.05CVE-2018-0111
1122217.26.38.1
 
 
Cisco WebEx Meetings Server Disabled Account 7pk security0.00CVE-2018-0110
1122203.54.32.7
 
 
Cisco WebEx Meetings Server information disclosure0.00CVE-2018-0109
1122195.35.35.3
 
 
Cisco WebEx Meetings Server xml external entity reference0.04CVE-2018-0108
1122186.54.38.8
 
 
Cisco Prime Service Catalog Web Framework cross-site request forgery0.00CVE-2018-0107
1122173.74.03.3
 
 
Cisco Elastic Services Controller ConfD Server information disclosure0.00CVE-2018-0106
1122165.35.35.3
 
 
Cisco Unified Communications Manager Web Framework information disclosure0.00CVE-2018-0105
1122155.84.37.4
 
 
Cisco NX-OS resource management0.00CVE-2018-0102
1122144.95.34.4
 
 
Cisco AnyConnect Secure Mobility Client Profile Editor xml external entity reference0.09CVE-2018-0100
1122137.56.38.8
 
 
Cisco D9800 Network Transport Receiver Web Management GUI os command injection0.00CVE-2018-0099
1122125.24.36.1
 
 
Cisco WAP150 Web-based Management Interface cross site scripting0.00CVE-2018-0098
1122116.77.36.1
 
 
Cisco Prime Infrastructure Web Interface redirect0.00CVE-2018-0097
1122106.16.35.9
 
 
Cisco Prime Infrastructure Role-Based Access Control access control0.00CVE-2018-0096
1122097.87.87.8
 
 
Cisco Email Security Appliance Administrative Shell access control0.00CVE-2018-0095
1122086.45.37.5
 
 
Cisco UCS Central Software IPv6 Packet resource consumption0.00CVE-2018-0094
1122075.24.36.1
 
 
Cisco Web Security Appliance Web-based Management Interface Reflected cross site scripting0.00CVE-2018-0093
1122066.25.37.1
 
 
Cisco NX-OS Role-Based Access Control access control0.00CVE-2018-0092
1122055.24.36.1
 
 
Cisco Identity Services Engine Web-based Management Interface DOM-Based cross site scripting0.00CVE-2018-0091
1122047.47.37.5
 
 
Cisco NX-OS Management Interface resource consumption0.00CVE-2018-0090
1122036.45.37.5
 
 
Cisco Policy Suite CPS PCRF access control0.00CVE-2018-0089
1122025.35.3
 
 
 
Cisco Industrial Ethernet 4010 Series Switch CLI Command access control0.00CVE-2018-0088
1122016.95.38.6
 
 
Cisco Unified Customer Voice Portal Application Server resource consumption0.00CVE-2018-0086
1122004.43.35.5
 
 
Intel MinnowBoard 3 UEFI API input validation0.00CVE-2017-5699
1121996.55.37.8
 
 
Intel Graphics Driver untrusted search path0.00CVE-2017-5696
1121986.25.37.2
 
 
Moxa SoftNVR-IA Live Viewer uncontrolled search path0.09CVE-2017-5170

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!