CVSSv3 February 2018info

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

C3BM Index »

Our unique C3BM Index (CVSSv3 Base Meta Index) cumulates the CVSSv3 Meta Base Scores of all entries over time. Comparing this index to the amount of disclosed vulnerabilities helps to pinpoint the most important events.

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

PublishedBaseVDBNVDVendResVulnerabilityCTICVE
02/28/20185.45.35.5
 
 
GNU binutils libbfd elf.c assign_file_positions_for_non_load_sections null pointer dereference0.08CVE-2018-7570
02/28/20185.45.35.5
 
 
GNU binutils libbfd dwarf2.c integer overflow0.05CVE-2018-7569
02/28/20186.47.35.5
 
 
GNU binutils libbfd dwarf1.c parse_die integer overflow0.08CVE-2018-7568
02/28/20184.13.54.8
 
 
PHP Scripts Mall Entrepreneur Job Portal Script Category Name categories_industry.php cross site scripting0.07CVE-2018-7469
02/28/20188.57.39.8
 
 
ActivePDF Pictview out-of-bounds write0.07CVE-2018-7264
02/28/20185.53.37.8
 
 
NoMachine DokanFS access control0.04CVE-2018-6947
02/28/20186.67.35.9
 
 
Apache Tomcat URL Pattern 7pk security0.07CVE-2018-1304
02/28/20185.44.36.5
 
 
Apache OpenMeetings CRUD Operation access control0.07CVE-2018-1286
02/28/20186.45.37.5
 
 
Parallels Remote Application Server Web Interface path traversal0.07CVE-2017-9447
02/28/20187.47.47.4
 
 
CloudForms VMware session expiration0.00CVE-2017-12191
02/28/20185.35.35.3
 
 
IBM TRIRIGA Application Platform Database Query information disclosure0.04CVE-2016-0299
02/28/20187.05.38.8
 
 
IBM BigFix Platform cross-site request forgery0.00CVE-2016-0295
02/28/20187.56.38.8
 
 
IBM BigFix Platform Report Server os command injection0.00CVE-2016-0291
02/28/20187.06.57.5
 
 
BlackCat CMS logs.php path traversal0.08CVE-2015-5079
02/28/20187.56.38.8
 
 
Vesta Control Panel index.php os command injection0.08CVE-2015-4117
02/28/20186.77.36.1
 
 
Bonita BPM Portal login.jsp redirect0.09CVE-2015-3898
02/28/20185.95.36.5
 
 
FFmpeg libavcodec utvideodec.c decode_init out-of-bounds read0.06CVE-2018-7557
02/28/20187.25.39.1
 
 
LimeSurvey InstallerController.php Config information disclosure0.04CVE-2018-7556
02/28/20187.55.39.8
 
 
sam2p input-bmp.ci readimage use after free0.07CVE-2018-7554
02/28/20188.57.39.8
 
 
sam2p in_pcx.cpp pcxLoadRaster memory corruption0.00CVE-2018-7553
02/28/20188.57.39.8
 
 
sam2p mapping.cpp clear memory corruption0.05CVE-2018-7552
02/28/20188.57.39.8
 
 
sam2p minips.cpp delete0 use after free0.09CVE-2018-7551
02/28/20187.06.57.5
 
 
K2 Component Access Control path traversal0.00CVE-2018-7482
02/28/20188.57.39.8
 
 
PHP Scripts Mall School Management Script parent_login.php sql injection0.05CVE-2018-7477
02/28/20188.57.39.8
 
 
Design Science MathType use after free0.00CVE-2018-6641
02/28/20188.57.39.8
 
 
Design Science MathType memory corruption0.04CVE-2018-6640
02/28/20188.57.39.8
 
 
Design Science MathType memmove out-of-bounds write0.05CVE-2018-6639
02/28/20188.57.39.8
 
 
Design Science MathType memory corruption0.07CVE-2018-6638
02/27/20186.45.37.5
 
 
zsh Hash Table params.c input validation0.07CVE-2018-7549
02/27/20187.55.39.8
 
 
zsh subst.c null pointer dereference0.00CVE-2018-7548

Want to stay up to date on a daily basis?

Enable the mail alert feature now!