CVSSv3 07/03/2019info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCVE
1373318.57.39.8
 
 
JetBrains IntelliJ IDEA Ultimate Configuration File Cleartext weak encryptionCVE-2019-9873
1373306.85.68.1
 
 
JetBrains IntelliJ IDEA Ultimate Configuration File Cleartext weak encryptionCVE-2019-9872
1373298.57.39.8
 
 
Hawt Hawtio Server-Side Request ForgeryCVE-2019-9827
1373288.57.39.8
 
 
JetBrains IntelliJ IDEA Configuration File Cleartext weak encryptionCVE-2019-9823
1373279.89.89.8
 
 
JetBrains Spring Boot Configuration privilege escalationCVE-2019-9186
1373268.57.39.8
 
 
DOSBox memory corruptionCVE-2019-7165
1373255.44.36.5
 
 
F5 BIG-IP iControl REST Crash denial of serviceCVE-2019-6641
1373245.35.35.3
 
 
F5 BIG-IP SNMP information disclosureCVE-2019-6640
1373233.62.44.8
 
 
F5 BIG-IP AFM/BIG-IP PEM Subscriber Management Stored cross site scriptingCVE-2019-6639
1373225.44.36.5
 
 
F5 BIG-IP iControl REST Endpoint Loop denial of serviceCVE-2019-6638
1373215.44.36.5
 
 
F5 BIG-IP ASM REST Endpoint Memory Consumption denial of serviceCVE-2019-6637
1373206.34.38.4
 
 
F5 BIG-IP AFM/BIG-IP ASM AFM Feed List Stored cross site scriptingCVE-2019-6636
1373194.95.34.4
 
 
F5 BIG-IP Appliance Mode privilege escalationCVE-2019-6635
1373185.44.36.5
 
 
F5 BIG-IP Analytics Report denial of serviceCVE-2019-6634
1373175.14.26.0
 
 
F5 BIG-IP Appliance Mode privilege escalationCVE-2019-6633
1373165.45.35.5
 
 
F5 BIG-IP vCMP Configuration weak authenticationCVE-2019-6632
1373154.83.75.9
 
 
F5 BIG-IP iRules denial of serviceCVE-2019-6631
1373143.53.57.5
 
 
F5 SSL Orchestrator TMM Restart denial of serviceCVE-2019-6630
1373136.45.37.5
 
 
F5 BIG-IP TMM Restart denial of serviceCVE-2019-6629
1373126.45.37.5
 
 
F5 BIG-IP PEM TMM Restart denial of serviceCVE-2019-6628
1373113.53.55.9
 
 
F5 SSL Orchestrator TMM Restart denial of serviceCVE-2019-6627
1373105.24.36.1
 
 
F5 BIG-IP AFM/BIG-IP Analytics/BIG-IP ASM Traffic Management User Interface Reflected cross site scriptingCVE-2019-6626
1373095.24.36.1
 
 
F5 BIG-IP Traffic Management User Interface Reflected cross site scriptingCVE-2019-6625
1373086.54.38.8
 
 
Rapid7 InsightVM Security Console cross site request forgeryCVE-2019-5630
1373079.49.98.8
 
 
FreeBSD CD-ROM Driver Kernel Memory memory corruptionCVE-2019-5602
1373066.46.36.5
 
 
FreeBSD FFS Stack-based memory corruptionCVE-2019-5601
1373058.57.39.8
 
 
FreeBSD iconv Code Execution memory corruptionCVE-2019-5600
1373045.55.58.8
 
 
SDL2_image Integer Overflow memory corruptionCVE-2019-5052
1373035.55.58.8
 
 
SDL2_image Error Heap-based memory corruptionCVE-2019-5051
1373026.04.87.3
 
 
Waves MAXX Audio WavesSysSvc WavesSysSvc64.exe privilege escalationCVE-2019-13208
1373018.57.39.8
 
 
Nlnet Labs nsd nsd-checkzone dname.c dname_concatenate() memory corruptionCVE-2019-13207
1373005.24.36.1
 
 
miniCMS post-edit.php cross site scriptingCVE-2019-13186
1372996.45.37.5
 
 
MikroTik Router FTP Daemon Memory Exhaustion denial of serviceCVE-2019-13074
1372988.57.39.8
 
 
JetBrains YouTrack Attachment privilege escalationCVE-2019-12867
1372978.57.39.8
 
 
JetBrains YouTrack Authorization privilege escalationCVE-2019-12866
1372968.57.39.8
 
 
JetBrains YouTrack Server Server-Side Request ForgeryCVE-2019-12852
1372956.54.38.8
 
 
JetBrains YouTrack Admin Endpoint cross site request forgeryCVE-2019-12851
1372949.89.89.8
 
 
JetBrains YouTrack Plugin Query Injection sql injectionCVE-2019-12850
1372935.74.37.2
 
 
JetBrains Hub Audit Log Cleartext information disclosureCVE-2019-12847
1372925.36.34.3
 
 
JetBrains TeamCity Permission privilege escalationCVE-2019-12846

Do you know our Splunk app?

Download it now for free!