CVSSv3 10/22/2019info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCVE
1440325.24.36.1
 
 
Adobe Experience Manager Forms Reflected cross site scriptingCVE-2019-8089
1440314.74.15.4
 
 
totemodata Folder Name cross site scriptingCVE-2019-17189
1440305.24.36.1
 
 
FusionPBX contact_edit.php cross site scriptingCVE-2019-16973
1440295.24.36.1
 
 
FusionPBX contact_addresses.php cross site scriptingCVE-2019-16972
1440285.24.36.1
 
 
FusionPBX messages_thread.php cross site scriptingCVE-2019-16971
1440274.43.55.4
 
 
Loofah Gem cross site scriptingCVE-2019-15587
1440265.24.36.1
 
 
Artificial Intelligence Theme cross site scriptingCVE-2015-9501
1440255.24.36.1
 
 
Exquisite Ultimate Newspaper Theme jquery.foundation.plugins.js cross site scriptingCVE-2015-9500
1440248.57.39.8
 
 
Showbiz Pro Plugin PHP Code Execution privilege escalationCVE-2015-9499
1440236.54.38.8
 
 
wps-hide-login Plugin Option Save cross site request forgeryCVE-2015-9498
1440226.54.38.8
 
 
ad-inserter Plugin cross site request forgeryCVE-2015-9497
1440217.56.38.8
 
 
freshmail-newsletter Plugin shortcode.php sql injectionCVE-2015-9496
1440205.24.36.1
 
 
syndication-links Plugin example.html cross site scriptingCVE-2015-9495
1440195.24.36.1
 
 
indieweb-post-kinds Plugin example.html cross site scriptingCVE-2015-9494
1440185.24.36.1
 
 
my-wish-list Plugin cross site scriptingCVE-2015-9493
1440178.17.88.4
 
 
IBM DB2 High Performance Unload memory corruptionCVE-2019-4523
1440167.57.37.8
 
 
nipper-ng Firewall Configuration process-general.c processPrivilage() memory corruptionCVE-2019-17424
1440156.46.36.5
 
 
Stephan Mooltipass Moolticute Access Control privilege escalationCVE-2019-12967
1440147.47.37.5
 
 
GNU Libidn2 Roudtrip Check spoofingCVE-2019-12290
1440138.57.39.8
 
 
Sangoma Session Border Controller GA Web Interface Webconfig.inc.php weak authenticationCVE-2019-12148
1440128.57.39.8
 
 
Sangoma Session Border Controller GA Web Interface Webconfig.inc.php command injectionCVE-2019-12147
1440115.75.65.9
 
 
Micro Focus Self Service Password Reset Certificate Validation Man-in-the-Middle weak authenticationCVE-2019-11674
1440106.45.37.5
 
 
Apache Traffic Server HTTP2 Flooding denial of serviceCVE-2019-10079
1440093.44.32.4
 
 
AVM Fritz!Box 7490 PPPoE Packet Padding information disclosureCVE-2017-8087
1411936.55.67.5
 
 
GNU gcc POWER9 Backend __builtin_darn() weak encryptionCVE-2019-15847

Do you want to use VulDB in your project?

Use the official API to access entries easily!