CVSSv3 11/05/2019info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCVE
1450267.56.38.8
 
 
Magento Newsletter Template sql injectionCVE-2019-8127
1450255.66.34.9
 
 
Magento XML Data privilege escalationCVE-2019-8126
1450246.76.37.2
 
 
Magento Configuration Parameter Remote Code ExecutionCVE-2019-8125
1450236.25.07.5
 
 
Magento Log privilege escalationCVE-2019-8124
1450225.55.65.3
 
 
Magento Log privilege escalationCVE-2019-8123
1450217.56.38.8
 
 
Magento Layout Update Remote Code ExecutionCVE-2019-8122
1450208.57.39.8
 
 
Magento Bootstrap/jquery/Knockout privilege escalationCVE-2019-8121
1450194.43.55.4
 
 
Magento Customer Email Address Stored cross site scriptingCVE-2019-8120
1450186.76.37.2
 
 
Magento Bulk Product Import Remote Code ExecutionCVE-2019-8119
1450176.37.35.3
 
 
Magento weak encryptionCVE-2019-8118
1450164.43.55.4
 
 
Magento Product View Stored cross site scriptingCVE-2019-8117
1450157.47.37.5
 
 
Magento Session Management weak authenticationCVE-2019-8116
1450144.13.54.8
 
 
Magento Product Reflected cross site scriptingCVE-2019-8115
1450136.76.37.2
 
 
Magento Import Remote Code ExecutionCVE-2019-8114
1450125.55.65.3
 
 
Magento Random Number Generator weak authenticationCVE-2019-8113
1450117.47.37.5
 
 
Magento Email Confirmation privilege escalationCVE-2019-8112
1450107.56.38.8
 
 
Magento Plugin Remote Code ExecutionCVE-2019-8111
1450097.56.38.8
 
 
Magento Template Hierarchy Remote Code ExecutionCVE-2019-8110
1450085.73.58.0
 
 
Magento Code Execution cross site request forgeryCVE-2019-8109
1450076.46.36.5
 
 
Magento Session Management weak authenticationCVE-2019-8108
1450065.95.46.5
 
 
Magento Export Data denial of serviceCVE-2019-8107
1450057.56.38.8
 
 
Magento directory traversalCVE-2019-8093
1450044.43.55.4
 
 
Magento Email Template Preview Reflected cross site scriptingCVE-2019-8092
1450036.76.37.2
 
 
Magento Layout Update Remote Code ExecutionCVE-2019-8091
1450025.95.46.5
 
 
Magento Design Layout denial of serviceCVE-2019-8090
1450015.24.36.1
 
 
Forcepoint Email Security cross site scriptingCVE-2019-6142
1450006.55.37.8
 
 
Investintech Able2Extract Professional Out-of-Bounds memory corruptionCVE-2019-5089
1449996.55.37.8
 
 
Investintech Able2Extract Professional Out-of-Bounds memory corruptionCVE-2019-5088
1449984.95.34.4
 
 
X11 Mesa 3D Graphics Library Shared Memory memory corruptionCVE-2019-5068
1449976.67.35.8
 
 
Cisco Firepower Threat Defense Software HTTP Traffic Filter privilege escalationCVE-2019-1982
1449966.67.35.8
 
 
Cisco Firepower Threat Defense Software Normalization privilege escalationCVE-2019-1981
1449956.67.35.8
 
 
Cisco Firepower Threat Defense Software Protocol Detection privilege escalationCVE-2019-1980
1449946.67.35.8
 
 
Cisco Firepower Threat Defense Software Stream Reassembly privilege escalationCVE-2019-1978
1449939.89.89.8
 
 
Veritas InfoScale Cluster Server command injectionCVE-2019-18780
1449925.95.36.5
 
 
Cisco Enterprise Chat and Email HTTP API information disclosureCVE-2019-1877
1449916.96.37.5
 
 
ClamAV Out-of-Bounds memory corruptionCVE-2019-1789
1449904.43.35.5
 
 
Cisco FXOS/NX-OS CLI Diagnostics information disclosureCVE-2019-1734
1449895.94.77.2
 
 
HP Device Boot privilege escalationCVE-2019-16284
1449886.04.37.7
 
 
Cisco TelePresence Advanced Media Gateway Web Application denial of serviceCVE-2019-15966
1449875.94.37.5
 
 
ClamAV ZIP Bomb denial of serviceCVE-2019-12625

Do you need the next level of professionalism?

Upgrade your account now!