CVSSv3 08/01/2019info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCTICVE
1410945.35.3
 
 
 
Microsoft Windows PowerShell privileges management0.00
1395276.36.3
 
 
 
Microsoft Windows PowerShell code injection0.08
1392807.26.38.1
 
 
Happypoint App Deeplink code injection0.03CVE-2019-9140
1392793.62.44.8
 
 
Aruba HP2910al-48G Persistent cross site scripting0.05CVE-2019-5401
1392786.85.68.1
 
 
evolution-ews SSL Validator certificate validation0.05CVE-2019-3890
1392775.45.45.4
 
 
atomic-openshift Garbage Collector improper authentication0.04CVE-2019-3884
1392765.24.36.1
 
 
Pandao Editor.md cross site scripting0.05CVE-2019-14517
1392757.47.37.5
 
 
Dnsmasq DNS Server memory corruption0.06CVE-2019-14513
1392746.55.37.8
 
 
MilkyTracker ModuleEditor.cpp convertInstrument memory corruption0.00CVE-2019-14497
1392736.55.37.8
 
 
MilkyTracker milkyplay LoaderXM.cpp load memory corruption0.04CVE-2019-14496
1392728.57.39.8
 
 
3proxy Admin Interface webadmin.c out-of-bounds write0.07CVE-2019-14495
1392715.94.37.5
 
 
Poppler SplashOutputDev.cc tilingPatternFill divide by zero0.00CVE-2019-14494
1392706.45.37.5
 
 
OpenCV persistence.cpp parse null pointer dereference0.00CVE-2019-14493
1392696.45.37.5
 
 
OpenCV cascadedetect.hpp calc out-of-bounds read0.00CVE-2019-14492
1392686.75.38.2
 
 
OpenCV cascadedetect.hpp HaarEvaluator out-of-bounds read0.05CVE-2019-14491
1392676.55.37.8
 
 
GnuCOBOL field.c cb_evaluate_expr memory corruption0.00CVE-2019-14486
1392665.24.36.1
 
 
Zurmo default cross site scripting0.04CVE-2019-14472
1392655.24.36.1
 
 
TestLink error.php cross site scripting0.05CVE-2019-14471
1392647.16.38.0
 
 
Alcatel-Lucent 8008 Cloud Edition Deskphone Change Password command injection0.00CVE-2019-14260
1392637.16.38.0
 
 
Polycom Obihai Obi1022 NTP command injection0.06CVE-2019-14259
1392628.57.39.8
 
 
Adenion Blog2Social Plugin sql injection0.04CVE-2019-13572
1392617.27.27.2
 
 
Apache Solr DataImportHandler improper authentication0.05CVE-2019-0193
1392605.24.36.1
 
 
cPanel WHM listips Interface cross site scripting0.00CVE-2018-20953
1392595.44.36.5
 
 
cPanel WHM Apache Includes Editor information disclosure0.00CVE-2018-20952
1392585.24.36.1
 
 
cPanel WHM Spamd Startup Config cross site scripting0.00CVE-2018-20951
1392575.24.36.1
 
 
cPanel WHM Account Transfer Stored cross site scripting0.00CVE-2018-20950
1392565.24.36.1
 
 
cPanel WHM Apache Configuration Include Editor cross site scripting0.00CVE-2018-20949
1392555.24.36.1
 
 
cPanel Backup cross site scripting0.05CVE-2018-20948
1392545.45.35.5
 
 
cPanel telnetcrt exposure of resource0.00CVE-2018-20947
1392533.33.33.3
 
 
cPanel Zone information disclosure0.00CVE-2018-20946
1392525.65.55.7
 
 
cPanel csvprocess improper authorization0.03CVE-2018-20945
1392513.33.33.3
 
 
cPanel httpd.conf information disclosure0.00CVE-2018-20944
1392502.52.52.5
 
 
cPanel Post-Update Task information disclosure0.00CVE-2018-20943
1392492.52.52.5
 
 
cPanel crontab information disclosure0.00CVE-2018-20942
1392484.22.85.6
 
 
cPanel Restore information disclosure0.00CVE-2018-20941
1392472.92.53.3
 
 
cPanel crontab race condition0.00CVE-2018-20940
1392463.33.33.3
 
 
cPanel Backup information disclosure0.00CVE-2018-20939
1392453.74.72.7
 
 
cPanel WHM API access control0.00CVE-2018-20938
1392444.34.34.3
 
 
cPanel Rename User Name improper authentication0.00CVE-2018-20937
1392433.33.33.3
 
 
cPanel SRS Secret exim.conf key management0.00CVE-2018-20936

Want to stay up to date on a daily basis?

Enable the mail alert feature now!