CVSSv3 01/06/2020info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCTICVE
1483687.56.38.8
 
 
Ahsay Cloud Backup Suite File Upload upload unrestricted upload0.00CVE-2020-5846
1483677.47.37.5
 
 
HashBrown CMS Connection.js path traversal0.04CVE-2020-5840
1483669.89.89.8
 
 
OpenLiteSpeed WebAdmin Console input validation0.06CVE-2020-5519
1483655.94.77.2
 
 
Gila CMS sql sql injection0.04CVE-2020-5515
1483647.86.69.1
 
 
Gila CMS File Upload thumb unrestricted upload0.00CVE-2020-5514
1483636.76.66.8
 
 
Gila CMS delete path traversal0.05CVE-2020-5513
1483626.76.66.8
 
 
Gila CMS path traversal0.00CVE-2020-5512
1483616.56.56.5
 
 
uftpd ftpcmd.c handle_PORT stack-based buffer overflow0.06CVE-2020-5204
1483604.43.35.5
 
 
Google Android Privileges DCRYPTO_equals information disclosure0.00CVE-2019-9472
1483596.05.36.7
 
 
Google Android abc-pcie.c set_outbound_iatu out-of-bounds write0.00CVE-2019-9471
1483586.05.36.7
 
 
Google Android abc-pcie.c dma_sblk_start out-of-bounds write0.00CVE-2019-9470
1483576.55.37.8
 
 
Google Android Kernel km4.c km_compute_shared_hmac input validation0.06CVE-2019-9469
1483566.55.37.8
 
 
Google Android export_key.cpp export_key_der double free0.08CVE-2019-9468
1483556.45.37.5
 
 
Schneider Electric Modicon M580 Modbus TCP improper check for unusual conditions0.04CVE-2019-6857
1483546.45.37.5
 
 
Schneider Electric Modicon M580 Modbus TCP improper check for unusual conditions0.03CVE-2019-6856
1483537.37.37.3
 
 
Schneider Electric EcoStruxure Geo SCADA Expert/Unity Pro improper authorization0.05CVE-2019-6855
1483526.55.37.8
 
 
Schneider Electric EcoStruxure Geo SCADA Expert Access Control access control0.05CVE-2019-6854
1483515.33.17.5
 
 
Anglersnet Access Analysis CGI An-Analyzer HTTP Referer Header Password insufficiently protected credentials0.04CVE-2019-5990
1483505.75.36.1
 
 
Anglersnet Access Analysis CGI An-Analyzer Analysis Object Page cross site scripting0.05CVE-2019-5989
1483495.75.36.1
 
 
Anglersnet Access Analysis CGI An-Analyzer Management Page Stored cross site scripting0.00CVE-2019-5988
1483487.56.38.8
 
 
Anglersnet Access Analysis CGI An-Analyzer Management Page os command injection0.00CVE-2019-5987
1483415.36.34.3
 
 
piSignage log path traversal0.00CVE-2019-20354
1483406.55.37.8
 
 
Netwide Assembler ASM File preproc.c set_text_free out-of-bounds read0.00CVE-2019-20352
1483396.86.86.8
 
 
OKER G232V1 UART Serial Interface os command injection0.00CVE-2019-20348
1483388.57.39.8
 
 
MojoHaus Exec Plugin XML Data code injection0.00CVE-2019-20343
1483336.55.37.8
 
 
rConfig sudoers privileges management0.05CVE-2019-19585
1483327.56.38.8
 
 
rConfig System ajaxArchiveFiles.php exec os command injection0.05CVE-2019-19509
1483315.24.36.1
 
 
Jinan USR IOT USR-WIFI232 Low Power WiFi Module Web Interface cross site scripting0.00CVE-2019-18842
1483308.27.39.1
 
 
Suricata TCP Segment code injection0.05CVE-2019-18792
1483297.47.37.5
 
 
Suricata TCP Session injection0.00CVE-2019-18625
1483283.53.53.5
 
 
Open Ticket Request System information disclosure0.00CVE-2019-18179
1483265.24.36.1
 
 
OX App Suite cross site scripting0.00CVE-2019-16717
1483255.34.16.6
 
 
OX App Suite Access Control default permission0.00CVE-2019-16716
1483245.63.77.5
 
 
DTEN D5/D7 HTTP missing encryption0.06CVE-2019-16274
1483239.89.89.8
 
 
DTEN D5/D7 adb improper authentication0.07CVE-2019-16273
1483228.57.39.8
 
 
DTEN D5/D7 Firmware authorization0.00CVE-2019-16272
1483215.35.35.3
 
 
DTEN D5/D7 Service Port 8080 PDF missing authentication0.05CVE-2019-16271
1483205.96.35.4
 
 
Cisco Data Center Network Manager JBoss Enterprise Application Platform access control0.00CVE-2019-15999
1483196.76.37.2
 
 
Cisco Data Center Network Manager REST/SOAP sql injection0.00CVE-2019-15985
1483186.76.37.2
 
 
Cisco Data Center Network Manager REST/SOAP sql injection0.00CVE-2019-15984
1483174.64.34.9
 
 
Cisco Data Center Network Manager SOAP API xml external entity reference0.00CVE-2019-15983
1483166.76.37.2
 
 
Cisco Data Center Network Manager REST/SOAP path traversal0.00CVE-2019-15982
1483156.76.37.2
 
 
Cisco Data Center Network Manager REST/SOAP path traversal0.00CVE-2019-15981
1483146.76.37.2
 
 
Cisco Data Center Network Manager REST/SOAP path traversal0.00CVE-2019-15980
1483136.76.37.2
 
 
Cisco Data Center Network Manager REST/SOAP os command injection0.00CVE-2019-15979
1483126.76.37.2
 
 
Cisco Data Center Network Manager REST/SOAP os command injection0.04CVE-2019-15978
1483118.57.39.8
 
 
Cisco Data Center Network Manager Authentication Mechanism hard-coded credentials0.00CVE-2019-15977
1483108.57.39.8
 
 
Cisco Data Center Network Manager Authentication Mechanism hard-coded credentials0.00CVE-2019-15976
1483098.57.39.8
 
 
Cisco Data Center Network Manager Authentication Mechanism hard-coded credentials0.00CVE-2019-15975
1483085.24.36.1
 
 
seefl package Filename Stored cross site scripting0.00CVE-2019-15603

Want to stay up to date on a daily basis?

Enable the mail alert feature now!