CVSSv3 07/05/2018info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCTICVE
1204645.24.36.1
 
 
AirTies 5444/5444TT cross site scripting0.00CVE-2018-8738
1204635.24.36.1
 
 
Sencha Ext JS XSS Protection getTip cross site scripting0.07CVE-2018-8046
1204626.86.86.8
 
 
Huawei Smart Phone Factory Reset Protection access control0.00CVE-2018-7944
1204616.54.38.8
 
 
Gleez CMS add cross-site request forgery0.00CVE-2018-13340
1204605.24.36.1
 
 
Angular Redactor Imperavi Redactor 3 Stored cross site scripting0.07CVE-2018-13339
1204597.47.37.5
 
 
PFGc transferFrom integer overflow0.00CVE-2018-13328
1204587.47.37.5
 
 
ChuCunLingAIGO transferFrom integer overflow0.00CVE-2018-13327
1204577.47.37.5
 
 
Bittelux transferFrom integer overflow0.03CVE-2018-13326
1204567.47.37.5
 
 
GROWCHAIN sell integer overflow0.00CVE-2018-13325
1204558.57.39.8
 
 
CyberArk Endpoint Privilege Manager access control0.03CVE-2018-13052
1204546.54.38.8
 
 
DamiCMS Administrator Account cross-site request forgery0.00CVE-2018-13031
1204538.57.39.8
 
 
Go Doc Dot Org Package path traversal0.06CVE-2018-12976
1204529.89.89.8
 
 
libsoup soup-cookie-jar.c soup_cookie_jar_get_cookies input validation0.03CVE-2018-12910
1204516.54.38.8
 
 
BEESCMS cross-site request forgery0.05CVE-2018-12739
1204506.66.56.8
 
 
ONOS org.onosproject.acl race condition0.00CVE-2018-12691
1204498.57.39.8
 
 
Microsoft Forefront Unified Access Gateway InitParams.aspx server-side request forgery0.06CVE-2018-12571
1204487.77.38.1
 
 
ntopng PRNG access control0.06CVE-2018-12520
1204478.06.39.8
 
 
Core FTP LE PASV Response memory corruption0.06CVE-2018-12113
1204466.97.36.5
 
 
D-Link DIR-890L A2 Captcha captcha_(number).jpeg access control0.03CVE-2018-12103
1204455.44.36.5
 
 
Singularity Overlay File System information disclosure0.03CVE-2018-12021
1204447.36.87.8
 
 
Dongguan Diqee Diqee360 Update Process upgrade.sh 7pk security0.05CVE-2018-10988
1204438.28.87.5
 
 
Dongguan Diqee Diqee360 mode_switch.sh REQUEST_SET_WIFIPASSWD command injection0.06CVE-2018-10987
1204425.44.36.5
 
 
HTCondor condor_schedd input validation0.00CVE-2017-16816
1204415.24.36.1
 
 
J2 Innovations FIN Stack Webform login Reflected cross site scripting0.00CVE-2017-11175
1204406.45.37.5
 
 
Bitcoin Core/Bitcoin Knots Final Alert cryptographic issues0.00CVE-2016-10725
1204396.45.37.5
 
 
Bitcoin Core/Bitcoin Knots Private Key Size resource consumption0.03CVE-2016-10724
1204386.75.38.1
 
 
Fortinet FortiOS Single Sign-On information disclosure0.00CVE-2018-9185
1204374.84.35.4
 
 
Synology CardDAV Server Address Book Editor cross site scripting0.08CVE-2018-8928
1204367.57.57.5
 
 
Apache CXF Fediz Application Plugin input validation0.03CVE-2018-8038
1204355.45.35.5
 
 
Apache Solr XML Data xml external entity reference0.00CVE-2018-8026

Interested in the pricing of exploits?

See the underground prices here!