CVSSv3 01/16/2019info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCTICVE
1298315.44.36.5
 
 
Cairo cairo-arc.c _arc_error_normalized resource consumption0.07CVE-2019-6462
1298306.56.56.5
 
 
Cairo cairo-arc.c _cairo_arc_in_direction input validation0.00CVE-2019-6461
1298295.44.36.5
 
 
GNU Recutils rec-field.c rec_field_set_name null pointer dereference0.00CVE-2019-6460
1298285.44.36.5
 
 
GNU Recutils rec-utils.c rec_extract_type resource management0.00CVE-2019-6459
1298275.44.36.5
 
 
GNU Recutils rec-buf.c rec_buf_new resource management0.00CVE-2019-6458
1298265.44.36.5
 
 
GNU Recutils rec-aggregate.c rec_aggregate_reg_new resource management0.00CVE-2019-6457
1298255.44.36.5
 
 
GNU Recutils rec-fex.c rec_fex_size null pointer dereference0.00CVE-2019-6456
1298246.46.36.5
 
 
GNU Recutils rec-mset.c rec_mset_elem_destroy double free0.00CVE-2019-6455
1298237.26.38.1
 
 
ES File Explorer File Manager Service Port 59777 input validation0.00CVE-2019-6447
1298225.24.36.1
 
 
Joomla CMS mod_banners Stored cross site scripting0.00CVE-2019-6264
1298214.13.54.8
 
 
Joomla CMS Global Configuration Stored cross site scripting0.02CVE-2019-6263
1298204.43.55.4
 
 
Joomla CMS Global Configuration Stored cross site scripting0.00CVE-2019-6262
1298195.24.36.1
 
 
Joomla CMS com_contact Stored cross site scripting0.01CVE-2019-6261
1298186.46.36.5
 
 
ISC BIND DDNS 7pk security0.03CVE-2018-5741
1298176.45.37.5
 
 
Kea Extension resource management0.00CVE-2018-5739
1298167.57.57.5
 
 
ISC BIND badcache.c input validation0.00CVE-2018-5734
1298155.94.37.5
 
 
ISC DHCP Reference Counter integer overflow0.05CVE-2018-5733
1298144.43.55.4
 
 
Cacti host.php cross site scripting0.04CVE-2018-20726
1298133.62.44.8
 
 
Cacti Graph Vertical Label graph_templates.php cross site scripting0.03CVE-2018-20725
1298123.62.44.8
 
 
Cacti pollers.php cross site scripting0.06CVE-2018-20724
1298113.62.44.8
 
 
Cacti color_templates.php cross site scripting0.00CVE-2018-20723
1298108.57.39.8
 
 
uriparser UriParse.c URI_FUNC out-of-bounds read0.00CVE-2018-20721
1298098.57.39.8
 
 
TIBCO Spotfire Server Spotfire Authentication improper authentication0.06CVE-2018-18814
1298085.24.36.1
 
 
TIBCO Spotfire Server Web Server Persistent cross site scripting0.00CVE-2018-18813
1298075.86.35.3
 
 
TIBCO Spotfire Server Spotfire Library access control0.00CVE-2018-18812
1298066.55.37.8
 
 
Dell EMC RSA Authentication Manager Quick Setup path traversal0.02CVE-2018-15782
1298056.45.37.5
 
 
ISC BIND Cleanup use after free0.02CVE-2017-3145
1298046.55.37.8
 
 
ISC BIND Installer access control0.00CVE-2017-3141
1298035.65.35.9
 
 
ISC BIND Response Policy Zone resource consumption0.05CVE-2017-3140
1298025.65.35.9
 
 
ISC BIND nxdomain-redirect 7pk error0.03CVE-2016-9778

Interested in the pricing of exploits?

See the underground prices here!