CVSSv3 12/30/2019info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCVE
1479444.34.34.3
 
 
IBM MQ Data Conversion Routine denial of serviceCVE-2019-4655
1479434.74.15.4
 
 
IBM Cognos Analytics Web UI cross site scriptingCVE-2019-4623
1479425.44.36.5
 
 
IBM Cognos Analytics Cross-Origin information disclosureCVE-2019-4343
1479414.73.36.2
 
 
IBM Watson Studio Local Key File information disclosureCVE-2019-4335
1479257.47.37.5
 
 
kind-of Type Detection index.js ctorName privilege escalationCVE-2019-20149
1479245.24.36.1
 
 
Laborator Neon Theme autosuggest-remote.php cross site scriptingCVE-2019-20141
1479237.56.38.8
 
 
libsixel fromgif.c gif_out_code memory corruptionCVE-2019-20140
1479224.43.55.4
 
 
Nagios XI nocscreenapi.php cross site scriptingCVE-2019-20139
1479205.35.35.3
 
 
MFScripts YetiShare _account_forgot_password.ajax.php information disclosureCVE-2019-19806
1479194.53.75.3
 
 
MFScripts YetiShare _account_forgot_password.ajax.php information disclosureCVE-2019-19805
1479185.63.77.5
 
 
MFScripts YetiShare Session Cookie Cleartext weak encryptionCVE-2019-19739
1479175.24.36.1
 
 
MFScripts YetiShare log_file_viewer.php cross site scriptingCVE-2019-19738
1479166.54.38.8
 
 
MFScripts YetiShare Session Cookie information disclosureCVE-2019-19737
1479155.24.36.1
 
 
MFScripts YetiShare Session Cookie httponly information disclosureCVE-2019-19736
1479146.43.79.1
 
 
MFScripts YetiShare Password Reset class.userpeer.php weak encryptionCVE-2019-19735
1479137.56.38.8
 
 
MFScripts YetiShare _account_move_file_in_folder.ajax.php sql injectionCVE-2019-19734
1479125.24.36.1
 
 
MFScripts YetiShare _get_all_file_server_paths.ajax.php cross site scriptingCVE-2019-19733
1479115.94.77.2
 
 
MFScripts YetiShare translation_manage_text.ajax.php sql injectionCVE-2019-19732
1479106.55.37.8
 
 
TinyWall Controller Debug Memory privilege escalationCVE-2019-19470
1479097.26.38.1
 
 
XMLBlueprint XML Data XML External EntityCVE-2019-19032
1479087.26.38.1
 
 
Easy XML Editor XML Data XML External EntityCVE-2019-19031
1479079.89.89.8
 
 
D-Link DIR-859 UPnP Service gena.cgi privilege escalationCVE-2019-17621
1479068.06.39.8
 
 
Apache Solr Remote Code ExecutionCVE-2019-17558
1479056.46.36.5
 
 
Tiny File Manager Upload Remote Code ExecutionCVE-2019-16790
1479048.57.39.8
 
 
ClickHouse Decompression Integer Underflow memory corruptionCVE-2019-16535
1479036.46.36.5
 
 
ClickHouse privilege escalationCVE-2019-15024
1479027.25.88.6
 
 
ros-melodic-ros-comm spinner.cpp remove() denial of serviceCVE-2019-13465
1479018.57.39.8
 
 
ros-melodic-ros-comm record.cpp parseOptions() memory corruptionCVE-2019-13445
1479008.57.39.8
 
 
php-shellcommand command injectionCVE-2019-10774
1478995.75.36.1
 
 
D-Link DGS-1510 cross site scriptingCVE-2018-7859
1478986.37.35.3
 
 
GitLab Enterprise Edition Access Control privilege escalationCVE-2018-20507
1478976.87.36.3
 
 
GitLab Community Edition/Enterprise Edition Access Control privilege escalationCVE-2018-20501
1478967.37.37.2
 
 
GitLab Community Edition/Enterprise Edition privilege escalationCVE-2018-20499
1478955.87.34.3
 
 
GitLab Community Edition/Enterprise Edition Access Control privilege escalationCVE-2018-20498
1478946.27.35.0
 
 
GitLab Community Edition/Enterprise Edition Server-Side Request ForgeryCVE-2018-20497
1478934.84.35.4
 
 
GitLab Community Edition/Enterprise Edition cross site scriptingCVE-2018-20496
1478925.35.35.3
 
 
GitLab Community Edition/Enterprise Edition information disclosureCVE-2018-20495
1478917.47.37.5
 
 
GitLab Community Edition/Enterprise Edition Access Control privilege escalationCVE-2018-20494
1478905.87.34.3
 
 
GitLab Community Edition/Enterprise Edition Access Control privilege escalationCVE-2018-20493
1478894.34.35.4
 
 
GitLab Enterprise Edition Persistent cross site scriptingCVE-2018-20491

Might our Artificial Intelligence support you?

Check our Alexa App!