CVSSv3 02/22/2018info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCVE
1138087.55.38.68.6
 
HPE integrated Lights Out denial of serviceCVE-2017-8987
1137258.57.39.8
 
 
unixODBC __info.c unicode_to_ansi_copy() memory corruptionCVE-2018-7409
1137246.55.37.8
 
 
npm privilege escalationCVE-2018-7408
1137238.57.39.8
 
 
OS Property Real Estate sql injectionCVE-2018-7319
1137228.57.39.8
 
 
CheckList sql injectionCVE-2018-7318
1137216.45.37.5
 
 
Proclaim Backup Download information disclosureCVE-2018-7317
1137208.57.39.8
 
 
Proclaim File Upload mediafileform privilege escalationCVE-2018-7316
1137198.57.39.8
 
 
Ek Rishta sql injectionCVE-2018-7315
1137188.57.39.8
 
 
PrayerCenter sql injectionCVE-2018-7314
1137178.57.39.8
 
 
CW Tags Search sql injectionCVE-2018-7313
1137168.57.39.8
 
 
Alexandria Book Library sql injectionCVE-2018-7312
1137158.57.39.8
 
 
eQ-3 Homematic CCU2 XML-RPC Service privilege escalationCVE-2018-7301
1137148.16.59.8
 
 
eQ Homematic CCU2 Web Interface User.setLanguage Remote Code ExecutionCVE-2018-7300
1137136.75.58.0
 
 
eQ-3 Homematic CCU2 Addon Installation Code ExecutionCVE-2018-7299
1137126.44.88.1
 
 
eQ-3 Homematic CCU2 Software Update loopupd.sh weak encryptionCVE-2018-7298
1137118.57.39.8
 
 
eQ-3 Homematic CCU2 Web Interface Remote Code ExecutionCVE-2018-7297
1137105.35.35.3
 
 
eQ-3 Homematic CCU2 Web Interface User.getLanguage directory traversalCVE-2018-7296
1137093.62.44.8
 
 
Wolf CMS Page Edit 3 cross site scriptingCVE-2018-6890
1137088.57.39.8
 
 
Micro Focus Project and Portfolio Management Center XML Data XML External EntityCVE-2018-6489
1137078.57.39.8
 
 
Micro Focus Universal CMDB Remote Code ExecutionCVE-2018-6488
1137066.85.68.1
 
 
IBM Runtimes for Java Technology Security Manager privilege escalationCVE-2018-1417
1137054.43.55.4
 
 
IBM Maximo Asset Management Web UI cross site scriptingCVE-2018-1415
1137047.56.38.8
 
 
IBM Maximo Asset Management Back-End Database sql injectionCVE-2018-1414
1137033.13.13.1
 
 
IBM Financial Transaction Manager ACH Services for Multi-Platform privilege escalationCVE-2018-1392
1137025.44.36.5
 
 
IBM Financial Transaction Manager ACH Services for Multi-Platform privilege escalationCVE-2018-1391
1137016.25.07.5
 
 
AppFormix Management Platform Debug Console privilege escalationCVE-2018-0015
1137006.85.68.1
 
 
Insteon Hub Radio Transmission weak encryptionCVE-2017-5251
1136998.57.39.8
 
 
Insteon Hub App weak encryptionCVE-2017-5250
1136988.57.39.8
 
 
Wink Labs's Wink Smart Home App Token weak encryptionCVE-2017-5249
1136978.57.39.8
 
 
HamayeshNegar CMS Signup signup.php sql injectionCVE-2017-18194

Might our Artificial Intelligence support you?

Check our Alexa App!