CVSSv3 05/23/2019info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCTICVE
1354825.14.85.5
 
 
Google Chrome Command Line Domain command injection0.00CVE-2019-5804
1354816.46.36.5
 
 
Google Chrome Content Security Policy input validation0.00CVE-2019-5803
1354806.46.36.5
 
 
Google Chrome Navigation Domain input validation0.08CVE-2019-5802
1354796.46.36.5
 
 
Google Chrome Omnibox Domain input validation0.00CVE-2019-5801
1354786.46.36.5
 
 
Google Chrome Blink CSP input validation0.00CVE-2019-5800
1354776.46.36.5
 
 
Google Chrome Content Security Policy input validation0.00CVE-2019-5799
1354766.46.36.5
 
 
Google Chrome Skia out-of-bounds read0.00CVE-2019-5798
1354756.96.37.5
 
 
Google Chrome Extensions race condition0.00CVE-2019-5796
1354747.56.38.8
 
 
Google Chrome PDFium integer overflow0.00CVE-2019-5795
1354736.46.36.5
 
 
Google Chrome Navigation Domain input validation0.00CVE-2019-5794
1354726.97.36.5
 
 
Google Chrome Policy Enforcement input validation0.00CVE-2019-5793
1354717.56.38.8
 
 
Google Chrome PDFium integer overflow0.00CVE-2019-5792
1354707.56.38.8
 
 
Google Chrome v8 out-of-bounds read0.00CVE-2019-5791
1354697.56.38.8
 
 
Google Chrome Javascript integer overflow0.00CVE-2019-5790
1354687.56.38.8
 
 
Google Chrome WebMIDI integer overflow0.06CVE-2019-5789
1354677.56.38.8
 
 
Google Chrome Blink Storage integer overflow0.04CVE-2019-5788
1354667.56.38.8
 
 
Google Chrome Blink use after free0.04CVE-2019-5787
1354625.66.34.9
 
 
dotCMS path traversal0.00CVE-2019-12309
1354618.57.39.8
 
 
VStarcam 100T/200V System Firmware upgrade_firmware.cgi improper authentication0.02CVE-2019-12289
1354608.57.39.8
 
 
VStarcam 100T/200V Web UI upgrade_htmls.cgi Update improper authentication0.00CVE-2019-12288
1354598.57.39.8
 
 
Form Maker Plugin Submissions_fm.php get_labels_parameters sql injection0.00CVE-2019-10866
1354586.45.37.5
 
 
Computrols CBAS Password Hash information disclosure0.00CVE-2019-10855
1354578.88.88.8
 
 
Computrols CBAS command injection0.05CVE-2019-10854
1354567.77.38.1
 
 
Computrols CBAS improper authentication0.05CVE-2019-10853
1354557.56.38.8
 
 
Computrols CBAS sql injection0.05CVE-2019-10852
1354546.46.36.5
 
 
Computrols CBAS key management0.00CVE-2019-10851
1354538.57.39.8
 
 
Computrols CBAS hard-coded credentials0.06CVE-2019-10850
1354526.45.37.5
 
 
Computrols CBAS subversion information disclosure0.05CVE-2019-10849
1354515.44.76.1
 
 
Computrols CBAS Password Reset Page Reflected cross site scripting0.00CVE-2019-10846
1354505.44.76.1
 
 
Westermo 250 Pre-5162/DR-260 Pre-5162 cmdexe cross site scripting0.00CVE-2018-19614
1354498.67.49.9
 
 
OX Software OX App Suite server-side request forgery0.00CVE-2017-13667
1354484.74.15.4
 
 
Zoho ManageEngine ManageEngine OpManager Google Map cross site scripting0.05CVE-2017-11560
1354476.45.37.5
 
 
Zoho ManageEngine ManageEngine OpManager getmailserversettings sql injection0.00CVE-2017-11559
1354465.35.35.3
 
 
Zoho ManageEngine Applications Manager Domain Name information disclosure0.00CVE-2017-11557
1354458.57.39.8
 
 
Symfony Access Control access control0.00CVE-2017-11365
1354446.96.37.5
 
 
libwebp libwebpmux double free0.00CVE-2016-9969
1354438.57.39.8
 
 
b2evolution Object call_plugin.php injection0.07CVE-2016-8901
1354428.57.39.8
 
 
Exponent CMS Object expCatController.php injection0.05CVE-2016-8899
1354418.57.39.8
 
 
Exponent CMS helpController.php sql injection0.00CVE-2016-8897
1354406.45.37.5
 
 
Asterisk null pointer dereference0.00CVE-2016-7550

Do you need the next level of professionalism?

Upgrade your account now!