CVSSv3 09/25/2019info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCTICVE
1423206.45.37.5
 
 
F5 BIG-IP APM Edge Client Log log file0.08CVE-2019-6656
1423195.35.35.3
 
 
F5 BIG-IP information disclosure0.06CVE-2019-6655
1423185.36.34.3
 
 
F5 BIG-IP Management Interface input validation0.08CVE-2019-6654
1423174.43.55.4
 
 
F5 BIG-IQ Stored cross site scripting0.00CVE-2019-6653
1423166.05.66.5
 
 
F5 BIG-IQ Authentication improper authentication0.05CVE-2019-6652
1423155.35.35.3
 
 
F5 BIG-IP/BIG-IQ/iWorkflow/Enterprise Manager Configuration Utility Login Page information exposure0.00CVE-2019-6651
1423144.43.55.4
 
 
IBM Content Navigator Web UI cross site scripting0.06CVE-2019-4571
1423104.43.35.5
 
 
Rubyzip ZIP File resource consumption0.00CVE-2019-16892
1423094.43.55.4
 
 
Halo comments cross site scripting0.00CVE-2019-16890
1423086.45.37.5
 
 
Ubiquiti EdgeMAX Cache File resource consumption0.08CVE-2019-16889
1423077.06.37.8
 
 
IrfanView buffer overflow0.05CVE-2019-16887
1423067.47.37.5
 
 
runc AppArmor rootfs_linux.go authorization0.05CVE-2019-16884
1423046.55.37.8
 
 
Samsung Text-to-speech Engine App privileges management0.08CVE-2019-16253
1423038.57.39.8
 
 
LemonLDAP::NG OpenID Connect Issuer authorization0.08CVE-2019-15941
1423028.57.39.8
 
 
Smart Battery A4 Authentication Interface improper authentication0.08CVE-2019-15069
1423018.57.39.8
 
 
Smart Battery A4 improper authentication0.08CVE-2019-15068
1423008.57.39.8
 
 
Smart Battery A2-25DE Login Page improper authentication0.08CVE-2019-15067
1422997.56.38.8
 
 
GLPI Password Reset autocompletion.php insufficiently protected credentials0.04CVE-2019-14666
1422987.87.87.8
 
 
Cisco NX-OS CLI os command injection0.05CVE-2019-12717
1422977.37.86.7
 
 
Cisco IOS XR Virtualization Manager os command injection0.06CVE-2019-12709
1422967.37.86.8
 
 
Cisco IOS XE link following0.04CVE-2019-12672
1422956.55.37.8
 
 
Cisco IOS XE CLI authorization0.04CVE-2019-12671
1422946.05.36.7
 
 
Cisco IOS XE IOx Guest Shell permission assignment0.08CVE-2019-12670
1422936.45.37.5
 
 
Cisco IOS XE RADIUS Change of Authorization input validation0.00CVE-2019-12669
1422924.54.34.8
 
 
Cisco IOS/IOS XE Web Framework Stored cross site scripting0.08CVE-2019-12668
1422914.54.34.8
 
 
Cisco IOS XE Web Framework Stored cross site scripting0.08CVE-2019-12667
1422906.05.36.7
 
 
Cisco IOS XE Guest Shell path traversal0.08CVE-2019-12666
1422897.37.37.4
 
 
Cisco IOS/IOS XE HTTP Client Persistent inadequate encryption0.00CVE-2019-12665
1422886.36.3
 
 
 
Cisco IOS XE Dialer Interface Feature for ISDN improper authentication0.08CVE-2019-12664
1422876.95.38.6
 
 
Cisco IOS XE CTS PAC input validation0.08CVE-2019-12663
1422866.05.36.7
 
 
Cisco NX-OS/IOS XE Signature Verification signature verification0.00CVE-2019-12662
1422857.37.86.7
 
 
Cisco IOS XE Virtualization Manager os command injection0.00CVE-2019-12661
1422845.45.35.5
 
 
Cisco IOS XE CLI input validation0.00CVE-2019-12660
1422836.45.37.5
 
 
Cisco IOS XE HTTP Service input validation0.00CVE-2019-12659
1422826.45.37.5
 
 
Cisco IOS XE Filesystem Resource Management resource consumption0.07CVE-2019-12658
1422816.45.37.5
 
 
Cisco IOS XE Unified Threat Defense input validation0.00CVE-2019-12657
1422806.45.37.5
 
 
Cisco IOS/IOS XE IOx Web Server input validation0.06CVE-2019-12656
1422797.47.37.5
 
 
Cisco IOS XE ALG/NAT/ZBFW buffer overflow0.04CVE-2019-12655
1422786.45.37.5
 
 
Cisco IOS/IOS XE Session Initiation Protocol null pointer dereference0.06CVE-2019-12654
1422776.45.37.5
 
 
Cisco IOS XE Raw Socket Transport input validation0.06CVE-2019-12653

Do you need the next level of professionalism?

Upgrade your account now!