CVSSv3 04/19/2019info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCVE
1338815.24.36.1
 
 
Vesta Control Panel URL cross site scriptingCVE-2019-9841
1338806.45.37.5
 
 
QEMU Device Driver sun4u.c denial of serviceCVE-2019-5008
1338796.45.37.5
 
 
IBM MQ TLS Key Renegotiation denial of serviceCVE-2019-4055
1338786.35.37.3
 
 
Google Android NFC Module privilege escalationCVE-2019-2041
1338774.13.35.0
 
 
Google Android rw_i93.cc rw_i93_process_ext_sys_info information disclosureCVE-2019-2040
1338764.13.35.0
 
 
Google Android rw_i93.cc rw_i93_sm_detect_ndef information disclosureCVE-2019-2039
1338754.43.35.5
 
 
Google Android rw_i93.cc rw_i93_process_sys_info information disclosureCVE-2019-2038
1338746.45.37.5
 
 
Google Android l2c_utils.cc l2cu_send_peer_config_rej information disclosureCVE-2019-2037
1338736.55.37.8
 
 
Google Android rw_i93.cc rw_i93_sm_update_ndef memory corruptionCVE-2019-2035
1338726.55.37.8
 
 
Google Android rw_i93.cc rw_i93_sm_read_ndef memory corruptionCVE-2019-2034
1338716.55.37.8
 
 
Google Android dnssd_clientstub.c create_hdr memory corruptionCVE-2019-2033
1338706.55.37.8
 
 
Google Android ble_advertiser_hci_interface.cc SetScanResponseData memory corruptionCVE-2019-2032
1338696.55.37.8
 
 
Google Android rw_t3t.cc rw_t3t_act_handle_check_ndef_rsp memory corruptionCVE-2019-2031
1338688.57.39.8
 
 
Google Android NetworkController.cpp removeInterfaceAddress memory corruptionCVE-2019-2030
1338677.56.38.8
 
 
Google Android tm_ble.cc btm_proc_smp_cback memory corruptionCVE-2019-2029
1338667.56.38.8
 
 
Google Android libmpeg2 Remote Code ExecutionCVE-2019-2028
1338657.56.38.8
 
 
Google Android floor0.c floor0_inverse1 memory corruptionCVE-2019-2027
1338646.55.37.8
 
 
Google Android Permission Check Editor.java updateAssistMenuItems privilege escalationCVE-2019-2026
1338636.55.37.8
 
 
Electronic Arts Origin Client Template Remote Code ExecutionCVE-2019-11354
1338628.07.38.8
 
 
TeamSpeak Client QT Framework Remote Code ExecutionCVE-2019-11351
1338617.55.39.8
 
 
CloudBees Jenkins Operations Center Configuration Page Credentials information disclosureCVE-2019-11350
1338608.57.39.8
 
 
Pluck files.php privilege escalationCVE-2019-11344
1338596.67.35.9
 
 
Matrix Sydent Registration emailutils.py privilege escalationCVE-2019-11340
1338587.56.38.8
 
 
FFmpeg Studio Profile Decoder mpeg4videodec.c memory corruptionCVE-2019-11339
1338577.56.38.8
 
 
FFmpeg hevcdec.c denial of serviceCVE-2019-11338
1338565.65.35.9
 
 
Sony Smart TV Photo Sharing Plus information disclosureCVE-2019-10886
1338556.45.37.5
 
 
Eclipse OpenJ9 Java Bytecode Verifier Crash denial of serviceCVE-2019-10245
1338548.57.39.8
 
 
Activision Infinity Ward Call of Duty: Black Ops 2 SV_SteamAuthClient memory corruptionCVE-2018-20817
1338535.35.35.3
 
 
IBM QRadar SIEM information disclosureCVE-2018-1729
1338167.47.37.5
 
 
libvirt API libvirt-domain.c virDomainGetTime privilege escalationCVE-2016-10746

Want to stay up to date on a daily basis?

Enable the mail alert feature now!