CVSSv3 05/29/2019info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCVE
1357205.44.36.5
 
 
GitLab Community Edition/Enterprise Edition information disclosureCVE-2019-9866
1357197.77.38.1
 
 
Wind River VxWorks Integer Overflow memory corruptionCVE-2019-9865
1357187.56.38.8
 
 
Horde Groupware Webmail Edition Image Upload Type.php onSubmit() privilege escalationCVE-2019-9858
1357178.57.39.8
 
 
GitLab Community Edition Access Control privilege escalationCVE-2019-9732
1357168.57.39.8
 
 
Synacor Zimbra Collaboration Suite mailboxd XML External EntityCVE-2019-9670
1357158.57.39.8
 
 
GitLab Community Edition/Enterprise Edition Permission privilege escalationCVE-2019-9485
1357145.45.35.5
 
 
GitLab Community Edition/Enterprise Edition Access Control privilege escalationCVE-2019-9221
1357138.57.39.8
 
 
GitLab Community Edition Access Control privilege escalationCVE-2019-9218
1357126.45.3
 
 
 
GitLab Community Edition Resource Exhaustion denial of serviceCVE-2019-9177
1357115.36.34.3
 
 
GitLab Community Edition/Enterprise Edition Access Control privilege escalationCVE-2019-7549
1357105.44.76.1
 
 
Adobe Experience Manager Forms Stored cross site scriptingCVE-2019-7129
1357096.46.36.5
 
 
Synacor Zimbra Collaboration Suite Feed Server-Side Request ForgeryCVE-2019-6981
1357089.89.89.8
 
 
Synacor Zimbra Collaboration Suite IMAP Deserialization privilege escalationCVE-2019-6980
1357078.27.39.1
 
 
Bosch BVMS/DIVAR/VSG/BIS/APE/AEC/BVC/VDSK RCP+ Network Port privilege escalationCVE-2019-6958
1357068.57.39.8
 
 
Bosch BVMS/DIVAR/VSG/BIS/APE/AEC/BVC/VDSK Network Interface privilege escalationCVE-2019-6957
1357055.54.36.8
 
 
HP Workstation BIOS TPM privilege escalationCVE-2019-6322
1357045.94.77.2
 
 
HP Workstation BIOS TPM privilege escalationCVE-2019-6321
1357035.65.35.9
 
 
IBM QRadar SIEM WinCollect Man-in-the-Middle information disclosureCVE-2019-4264
1357027.47.37.5
 
 
IBM API Connect weak encryptionCVE-2019-4256
1357014.74.15.4
 
 
IBM Jazz Reporting Service Web UI cross site scriptingCVE-2019-4184
1357004.74.15.4
 
 
IBM Cognos Analytics Web UI cross site scriptingCVE-2019-4139
1356996.67.35.9
 
 
IBM Tivoli Storage Productivity Center HSTS weak encryptionCVE-2019-4138
1356985.44.76.1
 
 
IBM Tivoli Storage Productivity Center Web UI cross site scriptingCVE-2019-4137
1356975.94.37.5
 
 
Containous Traefik types.go information disclosureCVE-2019-12452
1356968.57.39.8
 
 
GNOME glib File Permission gfile.c file_copy_fallback privilege escalationCVE-2019-12450
1356959.89.85.7
 
 
GNOME gvfs Move gvfsbackendadmin.c privilege escalationCVE-2019-12449
1356947.77.38.1
 
 
GNOME gvfs Admin Backend gvfsbackendadmin.c privilege escalationCVE-2019-12448
1356939.89.87.3
 
 
GNOME gvfs gvfsbackendadmin.c privilege escalationCVE-2019-12447
1356928.57.39.8
 
 
Sitecore Rocks Plugin Service privilege escalationCVE-2019-12440
1356916.55.37.8
 
 
Bubblewrap bubblewrap.c privilege escalationCVE-2019-12439
1356905.24.36.1
 
 
pfSense acme_accountkeys_edit.php cross site scriptingCVE-2019-12347
1356898.57.39.8
 
 
MiCollab/MiCollab AWV privilege escalationCVE-2019-12165
1356886.35.57.1
 
 
Bosch Smart Home Controller 3rd Party Pairing privilege escalationCVE-2019-11896
1356874.43.55.3
 
 
Bosch Smart Home Controller JSON-RPC Interface denial of serviceCVE-2019-11895
1356864.63.55.7
 
 
Bosch Smart Home Controller Backup information disclosureCVE-2019-11894
1356856.35.57.1
 
 
Bosch Smart Home Controller Update API privilege escalationCVE-2019-11893
1356845.33.57.1
 
 
Bosch Smart Home Controller JSON-RPC Interface information disclosureCVE-2019-11892
1356836.95.98.0
 
 
Bosch Smart Home Controller App Pairing privilege escalationCVE-2019-11891
1356827.56.38.8
 
 
Hustle Plugin Pop-Up Window CSV Injection privilege escalationCVE-2019-11872
1356818.57.39.8
 
 
Synacor Zimbra Collaboration Suite zimbra-chat/zimbra-talk XML External EntityCVE-2018-20160

Do you need the next level of professionalism?

Upgrade your account now!