CVSSv3 10/04/2018info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCTICVE
1248148.57.39.8
 
 
NetApp E-Series SANtricity OS Controller Software Remote Code Execution0.00CVE-2018-5492
1248137.56.38.8
 
 
IBM sql injection0.00CVE-2018-1819
1248124.43.35.5
 
 
GNU libiberty cp-demangle.c cplus_demangle_type Memory Consumption denial of service0.00CVE-2018-17985
1248116.55.37.8
 
 
ISPConfig Regular Expression Code Execution0.00CVE-2018-17984
1248108.27.39.1
 
 
Mercurial Manifest Entry manifest.c Out-of-Bounds memory corruption0.00CVE-2018-17983
1248094.55.33.7
 
 
Carestream Vue RIS/RIS Client Error information disclosure0.00CVE-2018-17891
1248085.24.36.1
 
 
Coast CMS Stored cross site scripting0.00CVE-2018-17876
1248077.56.38.8
 
 
Verba Permission privilege escalation0.00CVE-2018-17872
1248066.46.36.5
 
 
Verba Access Control privilege escalation0.00CVE-2018-17871
1248054.43.55.4
 
 
Navigate CMS navigate_upload.php Stored cross site scripting0.00CVE-2018-17849
1248044.34.34.3
 
 
IBM Financial Transaction Manager Log File information disclosure0.00CVE-2018-1670
1248035.35.35.3
 
 
PHP Scripts Mall Open Source Real-Estate Script img Directory information disclosure0.00CVE-2018-16457
1248025.24.36.1
 
 
PHP Scripts Mall Website Seller Script Keyword cross site scripting0.00CVE-2018-16456
1248015.24.36.1
 
 
PHP Scripts Mall Market Place Script Keyword cross site scripting0.00CVE-2018-16455
1248005.24.36.1
 
 
PHP Scripts Mall Domain Lookup Script Search Bar cross site scripting0.00CVE-2018-16453
1247995.24.36.1
 
 
PHP Scripts Mall Olx Clone cross site scripting0.00CVE-2018-16326
1247984.43.55.4
 
 
IBM Rational Quality Manager Web UI cross site scripting0.00CVE-2018-1604
1247974.43.55.4
 
 
IBM Rational Quality Manager Web UI cross site scripting0.00CVE-2018-1603
1247964.43.55.4
 
 
IBM Rational Quality Manager Web UI cross site scripting0.00CVE-2018-1602
1247956.37.35.3
 
 
MediaWiki Web Access .htaccess privilege escalation0.00CVE-2018-13258
1247948.27.39.1
 
 
SuSE Linux SMT Sibling Server spoofing weak authentication0.00CVE-2018-12472
1247937.26.38.1
 
 
SuSE Linux SMT Blocking Element XML External Entity0.00CVE-2018-12471
1247928.57.39.8
 
 
SuSE Linux SMT RegistrationSharing sql injection0.00CVE-2018-12470
1247915.36.34.3
 
 
Apache Tomcat URL Open Redirect0.08CVE-2018-11784
1247906.46.36.5
 
 
MediaWiki BotPasswords privilege escalation0.00CVE-2018-0505
1247895.44.36.5
 
 
MediaWiki logid information disclosure0.00CVE-2018-0504
1247885.36.34.3
 
 
MediaWiki privilege escalation0.00CVE-2018-0503
1247875.35.35.3
 
 
Apache Pony Mail Statistics Generator information disclosure0.00CVE-2017-5658
1247868.57.39.8
 
 
VideoWhisper videowhisper-video-conference-integration Plugin vw_upload.php Remote Code Execution0.00CVE-2015-9271

Do you know our Splunk app?

Download it now for free!