CVSSv3 09/05/2019info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCTICVE
1413266.55.37.8
 
 
Google Android zygote.java readArgumentList input validation0.00CVE-2019-9254
1413256.97.36.5
 
 
eFront LMS Login Page sql injection0.07CVE-2019-5070
1413247.56.38.8
 
 
eFront LMS Deserialization deserialization0.00CVE-2019-5069
1413235.35.35.3
 
 
Blynk-Library Packet Parser information disclosure0.00CVE-2019-5065
1413225.63.77.5
 
 
IBM Intelligent Operations Center Password Policy credentials management0.00CVE-2019-4321
1413216.77.36.1
 
 
IBM Jazz for Service Management Cache Header Injection injection0.00CVE-2019-4186
1413204.74.15.4
 
 
IBM Business Automation Workflow Web UI cross site scripting0.00CVE-2019-4149
1413196.55.37.8
 
 
Google Android Kernel binder.c binder_transaction integer overflow0.00CVE-2019-2181
1413185.45.35.5
 
 
Google Android ipp.c ippSetValueTag input validation0.00CVE-2019-2180
1413175.45.35.5
 
 
Google Android NDEF_MsgValidate integer overflow0.00CVE-2019-2179
1413166.55.37.8
 
 
Google Android NFC Service rw_t4t_sm_read_ndef out-of-bounds write0.00CVE-2019-2178
1413158.07.38.8
 
 
Google Android Permission HidProfile.java isPreferred permission0.00CVE-2019-2177
1413147.57.37.8
 
 
Google Android ihevcd_parse_headers.c ihevcd_parse_buffering_period_sei out-of-bounds write0.09CVE-2019-2176
1413136.55.37.8
 
 
Google Android Permission SliceManagerService.java checkAccess permission0.00CVE-2019-2175
1413126.55.37.8
 
 
Google Android SensorManager.cpp assertStateLocked use after free0.00CVE-2019-2174
1413114.43.35.5
 
 
Google Android Email Attachment ComposeActivityEmailExternal.java ComposeActivityEmailExternal information disclosure0.00CVE-2019-2124
1413106.55.37.8
 
 
Google Android Binder.java execTransact access control0.00CVE-2019-2123
1413096.55.37.8
 
 
Google Android gatekeeper.cpp MintAuthToken double free0.00CVE-2019-2115
1413087.57.37.8
 
 
Google Android ihevcd_ref_list.c ihevcd_ref_list out-of-bounds write0.00CVE-2019-2108
1413074.43.35.5
 
 
Google Assistant Permission information disclosure0.00CVE-2019-2103
1413066.46.36.5
 
 
Total.js CMS Cookie algorithmic complexity0.00CVE-2019-15955
1413058.67.49.9
 
 
Total.js CMS Widget command injection0.00CVE-2019-15954
1413047.56.38.8
 
 
Total.js CMS API access control0.00CVE-2019-15953
1413037.56.38.8
 
 
Total.js CMS path traversal0.00CVE-2019-15952
1413028.88.88.8
 
 
Nagios XI Web Interface command injection0.05CVE-2019-15949
1413015.02.57.5
 
 
Bitcoin Core bitcoin-qt wallet.dat Memory inadequate encryption0.05CVE-2019-15947
1413006.97.36.4
 
 
OpenSC asn1.c asn1_decode_entry memory corruption0.00CVE-2019-15946
1412996.97.36.4
 
 
OpenSC ASN.1 asn1.c decode_bit_string memory corruption0.00CVE-2019-15945
1412984.84.35.3
 
 
Counter-Strike: Global Offensive Community Game Server escape output0.00CVE-2019-15944
1412977.56.38.8
 
 
FFmpeg h2645_parse.c h2645_parse memory corruption0.00CVE-2019-15942
1412965.65.35.9
 
 
OpenCV hog.cpp getDescriptorSize divide by zero0.00CVE-2019-15939
1412958.57.39.8
 
 
Pengutronix Barebox nfs.c nfs_readlink_req memory corruption0.00CVE-2019-15938
1412948.57.39.8
 
 
Pengutronix Barebox nfs.c nfs_readlink_reply memory corruption0.05CVE-2019-15937
1412935.24.36.1
 
 
JetBrains TeamCity cross site scripting0.09CVE-2019-15848
1412927.56.38.8
 
 
FusionPBX service_edit.php command injection0.00CVE-2019-15029
1412914.43.35.5
 
 
Canon PRINT jp.co.canon.bsd.ad.pixmaprint Administrator Web Interface information disclosure0.00CVE-2019-14339
1412905.35.35.3
 
 
Knowage ChangePwdServlet Page Username information disclosure0.00CVE-2019-14278
1412895.94.77.2
 
 
Alfresco Community Edition Solr Configuration File input validation0.05CVE-2019-14224
1412888.57.39.8
 
 
Alfresco Community Edition Web Admin Interface key management0.09CVE-2019-14222
1412876.05.56.5
 
 
Smanos W100 permission0.09CVE-2019-13361

Might our Artificial Intelligence support you?

Check our Alexa App!