CVSSv3 03/27/2018info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCTICVE
1151405.24.36.1
 
 
Roland Gruber Softwareentwicklung LDAP Account Manager cross site scripting0.08CVE-2018-8763
1151398.88.88.8
 
 
NordVPN XPC Service 7pk security0.05CVE-2018-9105
1151386.54.38.8
 
 
miniCMS conf.php cross-site request forgery0.00CVE-2018-9092
1151375.45.35.5
 
 
Long Range Zip lrz File runzip.c runzip_fd resource management0.00CVE-2018-9058
1151368.57.39.8
 
 
Hashicorp Terraform Amazon Web Services PRNG resource_aws_iam_user_login_profile.go entropy0.06CVE-2018-9057
1151355.55.55.6
 
 
CPU Speculative Execution BranchScope information disclosure0.05CVE-2018-9056
1151347.05.38.8
 
 
Roland Gruber Softwareentwicklung LDAP Account Manager CSRF Protection cross-site request forgery0.08CVE-2018-8764
1151335.24.36.1
 
 
Roland Gruber Softwareentwicklung LDAP Account Manager cmd.php cross site scripting0.00CVE-2018-8763
1151326.14.38.0
 
 
Mailer Plugin sendTestMail cross-site request forgery0.05CVE-2018-8718
1151316.67.16.1
 
 
Loofah Gem Whitelist cross site scripting0.00CVE-2018-8048
1151306.54.38.8
 
 
DeDeCMS tag_test_action.php cross-site request forgery0.00CVE-2018-7700
1151295.75.36.1
 
 
Enhancesoft osTicket index.php cross site scripting0.06CVE-2018-7196
1151286.85.68.1
 
 
Enhancesoft osTicket Password Reset credentials management0.08CVE-2018-7195
1151273.82.74.9
 
 
Enhancesoft osTicket integer overflow0.00CVE-2018-7194
1151265.75.36.1
 
 
Enhancesoft osTicket directory.php cross site scripting0.07CVE-2018-7193
1151255.75.36.1
 
 
Enhancesoft osTicket help-topic cross site scripting0.00CVE-2018-7192
1151245.75.36.1
 
 
Synacor Zimbra Collaboration ZmMailMsgViewgetAttachmentLinkHtml cross site scripting0.05CVE-2018-6882
1151236.55.37.8
 
 
Swisscom TVMediaHelper DLL Loader SwisscomTVMediaHelper.exe data processing0.00CVE-2018-6766
1151226.55.37.8
 
 
Swisscom MySwisscomAssistant DLL Loader MySwisscomAssistant_Setup.exe data processing0.00CVE-2018-6765
1151216.45.37.5
 
 
Apache Struts REST Plugin Xstream input validation0.04CVE-2018-1327
1151206.85.68.1
 
 
Cloud Foundry Silk CNI Plugin ASG access control0.00CVE-2018-1267
1151196.24.38.1
 
 
Cloud Foundry Cloud Controller path traversal0.00CVE-2018-1266
1151187.57.57.5
 
 
Dell EMC ScaleIO Light Installation Agent command injection0.00CVE-2018-1238
1151178.57.39.8
 
 
Dell EMC ScaleIO Light Installation Agent improper authentication0.05CVE-2018-1237
1151167.56.38.8
 
 
Cloud Foundry BOSH CLI access control0.05CVE-2018-1231
1151156.45.37.5
 
 
Dell EMC SaleIO MDM Service memory corruption0.00CVE-2018-1205
1151144.43.35.5
 
 
Linux Kernel ptrace.c flush_tmregs_to_thread memory corruption0.00CVE-2018-1091
1151135.95.36.5
 
 
OpenSSL ASN.1 resource consumption0.07CVE-2018-0739
1151126.67.35.9
 
 
OpenSSL PA-RISC CRYPTO_memcmp input validation0.08CVE-2018-0733
1151115.45.35.5
 
 
Cisco ClamAV clamscan pdfng.c out-of-bounds read0.05CVE-2018-0202

Do you know our Splunk app?

Download it now for free!