CVSSv3 09/26/2019info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCVE
1423818.57.39.8
 
 
pfSense picture.widget.php file_put_contents directory traversalCVE-2019-16915
1423805.24.36.1
 
 
pfSense services_captiveportal_mac.php cross site scriptingCVE-2019-16914
1423786.54.38.8
 
 
pfSense diag_command.php csrf_callback() cross site request forgeryCVE-2019-16667
1423776.37.35.3
 
 
CKFinder Documentation Content Sniffing privilege escalationCVE-2019-15891
1423767.47.37.5
 
 
CKFinder File Name File Upload privilege escalationCVE-2019-15862
1423745.24.36.1
 
 
DNN Admin Notification notification cross site scriptingCVE-2019-12562
1423737.66.68.7
 
 
Cloud Foundry UAA Scope privilege escalationCVE-2019-11279
1423725.55.58.7
 
 
Cloud Foundry UAA SCIM Query privilege escalationCVE-2019-11278
1423718.57.39.8
 
 
Apple macOS Foundation Out-of-Bounds memory corruptionCVE-2019-8641
1423708.57.39.8
 
 
Apple watchOS Foundation Out-of-Bounds memory corruptionCVE-2019-8641
1423698.57.39.8
 
 
Apple iOS Foundation Out-of-Bounds memory corruptionCVE-2019-8641
1423684.25.92.4
 
 
Apple iOS/iPadOS VoiceOver Lockscreen privilege escalationCVE-2019-8775
1423675.35.35.3
 
 
Apple Safari Service Workers History information disclosureCVE-2019-8725
1423666.46.36.5
 
 
Apple Safari Juno Im spoofingCVE-2019-8654
1423654.43.35.5
 
 
Apple tvOS information disclosureCVE-2019-8704
1423647.06.37.8
 
 
Apple Xcode otool memory corruptionCVE-2019-8739
1423637.06.37.8
 
 
Apple Xcode otool memory corruptionCVE-2019-8738
1423627.56.38.8
 
 
Apple Xcode ld64 Remote Code ExecutionCVE-2019-8724
1423617.56.38.8
 
 
Apple Xcode ld64 Remote Code ExecutionCVE-2019-8723
1423607.56.38.8
 
 
Apple Xcode ld64 Remote Code ExecutionCVE-2019-8722
1423597.56.38.8
 
 
Apple Xcode ld64 Remote Code ExecutionCVE-2019-8721
1423588.88.88.8
 
 
Apple Xcode IDE SCM memory corruptionCVE-2019-3855
1423578.57.39.8
 
 
Apple watchOS Foundation Out-of-Bounds memory corruptionCVE-2019-8641
1423565.24.36.1
 
 
Apple Safari WebKit Page Loading Universal cross site scriptingCVE-2019-8674
1423555.24.36.1
 
 
Apple iOS WebKit Page Loading Universal cross site scriptingCVE-2019-8674
1423545.36.34.3
 
 
Apple iOS Safari Address spoofingCVE-2019-8727
1423534.94.35.5
 
 
Apple iOS Quick Look information disclosureCVE-2019-8731
1423522.42.42.4
 
 
Apple iOS Messages Lockscreen information disclosureCVE-2019-8742
1423514.43.35.5
 
 
Apple iOS Keyboards information disclosureCVE-2019-8704
1423508.57.39.8
 
 
Apple iOS Foundation Out-of-Bounds memory corruptionCVE-2019-8641
1423495.54.36.8
 
 
Apple iOS Face ID weak authenticationCVE-2019-8760
1423485.96.35.5
 
 
Apple iOS CoreAudio memory corruptionCVE-2019-8705
1423476.37.35.3
 
 
Apple iOS Bluetooth privilege escalationCVE-2019-8711
1423466.45.37.5
 
 
Lenovo System Update Configuration File denial of serviceCVE-2019-6175
1423457.47.37.5
 
 
ThinkAgile CP-SB BMC Session weak authenticationCVE-2019-6161
1423445.44.36.5
 
 
IBM MQ Command Server denial of serviceCVE-2019-4378
1423436.37.35.3
 
 
IBM QRadar SIEM Server-Side Request ForgeryCVE-2019-4262
1423424.23.15.3
 
 
ARM Mbed TLS/ARM Mbed Crypto ECDSA RNG weak encryptionCVE-2019-16910
1423414.74.15.4
 
 
TeamPass Password cross site scriptingCVE-2019-16904
1423405.35.35.3
 
 
Platinum UPnP SDK PltHttpServer.cpp directory traversalCVE-2019-16903

Do you want to use VulDB in your project?

Use the official API to access entries easily!