CVSSv3 09/26/2019info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCTICVE
1423818.57.39.8
 
 
pfSense picture.widget.php file_put_contents input validation0.05CVE-2019-16915
1423805.24.36.1
 
 
pfSense services_captiveportal_mac.php cross site scripting0.00CVE-2019-16914
1423786.54.38.8
 
 
pfSense diag_command.php csrf_callback cross-site request forgery0.07CVE-2019-16667
1423776.37.35.3
 
 
CKFinder Documentation Content Sniffing information disclosure0.00CVE-2019-15891
1423767.47.37.5
 
 
CKFinder File Name unrestricted upload0.06CVE-2019-15862
1423745.24.36.1
 
 
DNN Admin Notification notification cross site scripting0.00CVE-2019-12562
1423737.76.68.8
 
 
Cloud Foundry UAA Scope privileges management0.01CVE-2019-11279
1423728.26.69.8
 
 
Cloud Foundry UAA SCIM Query input validation0.00CVE-2019-11278
1423718.57.39.8
 
 
Apple macOS Foundation out-of-bounds read0.02CVE-2019-8641
1423708.57.39.8
 
 
Apple watchOS Foundation out-of-bounds read0.00CVE-2019-8641
1423698.57.39.8
 
 
Apple iOS Foundation out-of-bounds read0.01CVE-2019-8641
1423684.25.92.4
 
 
Apple iOS/iPadOS VoiceOver Lockscreen information disclosure0.00CVE-2019-8775
1423675.35.35.3
 
 
Apple Safari Service Workers History information disclosure0.00CVE-2019-8725
1423666.46.36.5
 
 
Apple Safari Juno Im input validation0.02CVE-2019-8654
1423654.43.35.5
 
 
Apple tvOS improper authentication0.08CVE-2019-8704
1423647.06.37.8
 
 
Apple Xcode otool memory corruption0.00CVE-2019-8739
1423637.06.37.8
 
 
Apple Xcode otool memory corruption0.00CVE-2019-8738
1423627.56.38.8
 
 
Apple Xcode ld64 input validation0.00CVE-2019-8724
1423617.56.38.8
 
 
Apple Xcode ld64 input validation0.00CVE-2019-8723
1423607.56.38.8
 
 
Apple Xcode ld64 input validation0.02CVE-2019-8722
1423597.56.38.8
 
 
Apple Xcode ld64 input validation0.00CVE-2019-8721
1423588.88.88.8
 
 
Apple Xcode IDE SCM integer overflow0.00CVE-2019-3855
1423578.57.39.8
 
 
Apple watchOS Foundation out-of-bounds read0.01CVE-2019-8641
1423565.24.36.1
 
 
Apple Safari WebKit Page Loading Universal cross site scripting0.01CVE-2019-8674
1423555.24.36.1
 
 
Apple iOS WebKit Page Loading Universal cross site scripting0.03CVE-2019-8674
1423545.36.34.3
 
 
Apple iOS Safari Address input validation0.03CVE-2019-8727
1423534.94.35.5
 
 
Apple iOS Quick Look default permission0.00CVE-2019-8731
1423522.42.42.4
 
 
Apple iOS Messages Lockscreen information disclosure0.00CVE-2019-8742
1423514.43.35.5
 
 
Apple iOS Keyboards improper authentication0.08CVE-2019-8704
1423508.57.39.8
 
 
Apple iOS Foundation out-of-bounds read0.01CVE-2019-8641

Do you want to use VulDB in your project?

Use the official API to access entries easily!