CVSSv3 11/21/2019info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCVE
1461155.45.35.5
 
 
Qualcomm Snapdragon Auto Xtra Daemon Use-After-Free memory corruptionCVE-2019-10490
1461146.55.37.8
 
 
Qualcomm Snapdragon Auto Qurt Kernel Out-of-Bounds memory corruptionCVE-2018-13916
1461134.83.16.5
 
 
Fortinet FortiOS Configuration Backup Default Key weak encryptionCVE-2019-6693
1461126.45.37.5
 
 
Beckhoff TwinCAT Profinet Driver denial of serviceCVE-2019-5637
1461115.35.35.3
 
 
Beckhoff TwinCAT Runtime ADS Discovery Service denial of serviceCVE-2019-5636
1461108.57.39.8
 
 
NetApp ONTAP Select Deploy Administration Utility Code Injection privilege escalationCVE-2019-5509
1461097.56.38.8
 
 
xcftools xcf2png/xcf2pnm flattenIncrementally memory corruptionCVE-2019-5087
1461087.56.38.8
 
 
xcftools xcf2png/xcf2pnm flattenIncrementally memory corruptionCVE-2019-5086
1461076.55.37.8
 
 
Tenda AC9 Router AC1200 WanParameterSetting command injectionCVE-2019-5072
1461066.55.37.8
 
 
Tenda AC9 Router AC1200 WanParameterSetting command injectionCVE-2019-5071
1461056.55.37.8
 
 
Qualcomm Snapdragon Auto Out-of-Bounds memory corruptionCVE-2019-2339
1461045.45.35.5
 
 
Qualcomm Snapdragon Auto CBO Listener Use-After-Free memory corruptionCVE-2019-2336
1461036.45.37.5
 
 
Qualcomm Snapdragon Auto Attach Reject Message Loop denial of serviceCVE-2019-2335
1461026.55.37.8
 
 
Qualcomm Snapdragon Compute Use-After-Free memory corruptionCVE-2019-2329
1461014.43.35.5
 
 
Qualcomm Snapdragon Auto Kernel denial of serviceCVE-2019-2318
1461006.55.37.8
 
 
Qualcomm Snapdragon Auto API memory corruptionCVE-2019-2315
1460998.57.39.8
 
 
Qualcomm Snapdragon Auto SNDCP Module Out-of-Array memory corruptionCVE-2019-2303
1460986.55.37.8
 
 
Qualcomm Snapdragon Auto NAN Message memory corruptionCVE-2019-2297
1460974.43.35.5
 
 
Qualcomm Snapdragon Auto SDI information disclosureCVE-2019-2295
1460968.57.39.8
 
 
Qualcomm Snapdragon Auto Modem weak authenticationCVE-2019-2289
1460958.57.39.8
 
 
Qualcomm Snapdragon Auto Downlink Session memory corruptionCVE-2019-2271
1460948.57.39.8
 
 
Qualcomm Snapdragon Auto P2P Action Frame Out-of-Bounds memory corruptionCVE-2019-2268
1460936.55.37.8
 
 
Qualcomm Snapdragon Auto Camera Sensor Double-Free memory corruptionCVE-2019-2266
1460926.55.37.8
 
 
Qualcomm Snapdragon Auto Bitmap File Stack-based memory corruptionCVE-2019-2251
1460915.45.35.5
 
 
libarchive archive_string.c archive_wstring_append_from_mbs memory corruptionCVE-2019-19221
1460907.56.38.8
 
 
rConfig devices.php sql injectionCVE-2019-19207
1460898.57.39.8
 
 
Oniguruma regparse.c fetch_interval_quantifier memory corruptionCVE-2019-19204
1460888.57.39.8
 
 
Oniguruma gb18030.c gb18030_mbc_enc_len memory corruptionCVE-2019-19203
1460877.56.38.8
 
 
vTiger CRM My Preferences privilege escalationCVE-2019-19202
1460866.55.37.8
 
 
Kyrol Internet Security IOCTL kyrld.sys Code ExecutionCVE-2019-19197
1460857.87.87.8
 
 
Shibboleth Service Provider Spec File Symlink privilege escalationCVE-2019-19191
1460848.57.39.8
 
 
Jalios JCMS Backdoor weak authenticationCVE-2019-19033
1460838.57.39.8
 
 
Sangoma FreePBX Access Control privilege escalationCVE-2019-19006
1460827.87.87.8
 
 
Nitro Pro Log File debug.log privilege escalationCVE-2019-18958
1460817.04.39.8
 
 
Zulip Server Password Authentication API Key information disclosureCVE-2019-18933
1460806.46.36.5
 
 
Redmine sql injectionCVE-2019-18890
1460798.57.39.8
 
 
Symfony Cache Adapter Interface Code Injection privilege escalationCVE-2019-18889
1460787.47.37.5
 
 
Symfony MIME Type privilege escalationCVE-2019-18888
1460778.18.18.1
 
 
Symfony UriSigner Timing race conditionCVE-2019-18887
1460765.35.35.3
 
 
Symfony User information disclosureCVE-2019-18886

Might our Artificial Intelligence support you?

Check our Alexa App!