CVSSv3 09/24/2019info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCTICVE
1421837.75.69.8
 
 
ONTAP Select Deploy Administration Utility insufficiently protected credentials0.00CVE-2019-5505
1421828.57.39.8
 
 
ONTAP Select Deploy Administration Utility HTTP Service input validation0.04CVE-2019-5504
1421815.44.26.7
 
 
E2fsprogs Quota File out-of-bounds write0.04CVE-2019-5094
1421806.05.36.7
 
 
Dell EMC Update Package Framework uncontrolled search path0.04CVE-2019-3726
1421798.57.39.8
 
 
vBulletin widget_php input validation0.06CVE-2019-16759
1421786.45.37.5
 
 
RIOT MQTT Server null pointer dereference0.04CVE-2019-16754
1421775.24.36.1
 
 
Devise Token Auth Callback Controller fallback_render Reflected cross site scripting0.05CVE-2019-16751
1421765.24.36.1
 
 
Joomla CMS Default Template cross site scripting0.04CVE-2019-16725
1421758.57.39.8
 
 
File Sharing Wizard Exception buffer overflow0.04CVE-2019-16724
1421748.57.39.8
 
 
Suricata Options decode-ipv4.c IPV4OptValidateTimestamp out-of-bounds read0.00CVE-2019-16411
1421738.27.39.1
 
 
Suricata Fragmented Packet defrag.c Defrag4Reassemble out-of-bounds read0.04CVE-2019-16410
1421728.27.39.1
 
 
Suricata SSLv3 app-layer-ssl.c TLSDecodeHSHelloExtensions out-of-bounds read0.00CVE-2019-15699
1421717.47.37.5
 
 
SICK FX0-GPNT00000/FX0-GENT00000 buffer overflow0.05CVE-2019-14753
1421705.34.16.6
 
 
NXP Kinetis KV1x/Kinetis KV3x/Kinetis K8x Access Control improper authentication0.05CVE-2019-14239
1421695.34.16.6
 
 
STMicroelectronics STM32F7 Proprietary Code Read Out Protection improper authentication0.06CVE-2019-14238
1421687.27.86.5
 
 
BlueStacks Virtual Machine information disclosure0.00CVE-2019-14220
1421674.34.24.4
 
 
Niagara AX Utility improper authentication0.08CVE-2019-13528
1421667.06.37.8
 
 
Rockwell Automation Arena Simulation Software Cat. 9502-Ax Arena File uninitialized pointer0.06CVE-2019-13527
1421654.65.33.8
 
 
QEMU LSI SCSI Adapter Emulator lsi_execute_script infinite loop0.00CVE-2019-12068
1421645.53.37.8
 
 
IBM Security Key Lifecycle Manager Credentials cleartext storage0.05CVE-2019-4566
1421635.44.36.5
 
 
IBM Security Key Lifecycle Manager cross-site request forgery0.04CVE-2019-4515
1421628.57.39.8
 
 
wolfSSL ASN.1 Certificate asn.c CheckCertSignature_ex out-of-bounds read0.04CVE-2019-16748
1421618.57.39.8
 
 
Linux Kernel Beacon Head nl80211.c validate_beacon_head buffer overflow0.04CVE-2019-16746
1421606.55.37.8
 
 
pam-python privileges management0.00CVE-2019-16729
1421595.44.76.1
 
 
DOMPurify cross site scripting0.04CVE-2019-16728
1421588.37.39.4
 
 
Progress MOVEit Transfer REST API MOVEit.DMZ.WebApi.dll sql injection0.06CVE-2019-16383
1421557.87.87.8
 
 
Total Defense Anti-Virus caschelp.exe untrusted search path0.05CVE-2019-13357
1421546.55.37.8
 
 
Total Defense Anti-Virus Access Control AMRT.exe privileges management0.08CVE-2019-13356
1421536.55.37.8
 
 
Total Defense Anti-Virus Access Control ccschedulersvc.exe privileges management0.04CVE-2019-13355
1421436.77.36.1
 
 
CoreOS Tectonic Grafana Web Application cross site scripting0.04CVE-2018-9090
1421413.73.7
 
 
 
TLS Protocol/DTLS Protocol MAC Check Lucky Thirteen cryptographic issues0.04CVE-2013-0169

Do you want to use VulDB in your project?

Use the official API to access entries easily!