CVSSv3 06/20/2019info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCTICVE
1368068.16.310.0
 
 
Mozilla Firefox Sandbox input validation0.05CVE-2019-11708
1368047.87.87.8
 
 
Dell SupportAssist for Business PCs Privilege Management access control0.00CVE-2019-3735
1368028.57.39.8
 
 
Shenzhen Cylan Clever Dog Smart Camera DOG-2W-V4 Telnet Service hard-coded credentials0.06CVE-2019-12920
1368015.75.95.5
 
 
Shenzhen Cylan Clever Dog Smart Camera DOG-2W-V4 HTTP Web Server information disclosure0.06CVE-2019-12919
1368006.26.36.1
 
 
Cloudera Manager Wizard cross site scripting0.00CVE-2018-15913
1367995.35.3
 
 
 
GD Graphics Library gdImageBmpPt double free0.00CVE-2018-15879
1367985.35.3
 
 
 
GD Graphics Library gdImageBmpPtr double free0.00CVE-2018-15878
1367977.55.39.8
 
 
Check Point Endpoint Security Client VPN Blade unquoted search path0.00CVE-2019-8459
1367964.54.54.4
 
 
Check Point Software Endpoint Security Client Anti-Malware Blade input validation0.09CVE-2019-8458
1367957.56.38.8
 
 
RDK RDKB-20181217-1 cosa_x_cisco_com_ddns_dml.c Service_SetParamStringValue out-of-bounds read0.00CVE-2019-6964
1367947.56.38.8
 
 
RDK RDKB-20181217-1 CcspPandM Module cosa_dhcpv4_dml.c memory corruption0.05CVE-2019-6963
1367936.25.07.5
 
 
RDK RDKB-20181217-1 CcspWifiAgent Module cosa_wifi_apis.c command injection0.00CVE-2019-6962
1367926.46.36.5
 
 
RDK RDKB-20181217-1 WebUI Module actionHandlerUtility.php access control0.00CVE-2019-6961
1367915.44.76.1
 
 
FileRun ?module=fileman&section=do&page=up cross site scripting0.00CVE-2019-12905
1367904.74.15.4
 
 
SeedDMS out.UsrMgr.php Stored cross site scripting0.00CVE-2019-12745
1367896.96.37.5
 
 
SeedDMS File Upload command injection0.00CVE-2019-12744
1367885.74.37.2
 
 
Jspxcms URL Routing access control0.00CVE-2018-16553
1367875.05.34.7
 
 
MantisBT View Filters Page/Edit Filter Page view_filters_page.php Reflected cross site scripting0.00CVE-2018-16514
1367864.34.34.3
 
 
CreatiWity wityCMS Search for User Discovery users sql injection0.00CVE-2018-16251
1367854.43.55.4
 
 
CreatiWity wityCMS utilisateur Menu cross site scripting0.00CVE-2018-16250
1367844.13.54.8
 
 
Symphony Title points Stored cross site scripting0.00CVE-2018-16249
1367835.75.36.1
 
 
b3log Solo Publish Articles Menu Stored cross site scripting0.00CVE-2018-16248
1367824.74.15.4
 
 
YzmCMS user_config_add.html cross site scripting0.00CVE-2018-16247
1367815.94.77.2
 
 
TP-LINK WR1043ND HTTPd Server MediaServerFoldersCfgRpm.htm memory corruption0.00CVE-2018-16119
1367807.77.38.1
 
 
Sophos XG Firewall API Configuration APIController os command injection0.00CVE-2018-16118
1367797.56.38.8
 
 
Sophos XG Firewall Admin Portal Controller os command injection0.07CVE-2018-16117
1367787.56.38.8
 
 
Sophos XG Firewall Admin Portal AccountStatus.jsp sql injection0.06CVE-2018-16116
1367774.54.74.3
 
 
FreePBX DISA Module sql injection0.08CVE-2018-15892
1367765.45.94.8
 
 
FreePBX Asterisk Module Javascript cross site scripting0.05CVE-2018-15891
1367759.89.89.8
 
 
EthereumJ Deserialization Ethash.java ois.readObject deserialization0.00CVE-2018-15890
1367747.35.69.1
 
 
Asus Vivobaby App SSL Certificate Validator certificate validation0.00CVE-2017-17944
1367446.46.36.5
 
 
Cisco Prime Infrastructure Virtual Domain System access control0.00CVE-2019-1906
1367436.67.35.8
 
 
Cisco Email Security Appliance GZIP Decompression Engine input validation0.00CVE-2019-1905
1367428.27.39.1
 
 
Cisco Security Manager XML Data xml external entity reference0.00CVE-2019-1903
1367415.35.35.3
 
 
Cisco RV110W/RV130W/RV215W improper authorization0.00CVE-2019-1899
1367405.35.35.3
 
 
Cisco RV110W/RV130W/RV215W Web-based Management Interface improper authorization0.00CVE-2019-1898
1367395.35.35.3
 
 
Cisco RV110W/RV130W/RV215W Web-based Management Interface improper authorization0.00CVE-2019-1897
1367387.37.86.7
 
 
Cisco Integrated Management Controller CLI os command injection0.00CVE-2019-1879
1367377.56.38.8
 
 
Cisco Telepresence Codec/Collaboration Endpoint Cisco Discovery Protocol os command injection0.00CVE-2019-1878
1367366.37.35.3
 
 
Cisco Wide Area Application Services HTTPS Proxy missing authentication0.00CVE-2019-1876

Want to stay up to date on a daily basis?

Enable the mail alert feature now!