CVSSv3 01/26/2020info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCVE
1493755.24.36.1
 
 
Dolibarr ERP CRM passwordforgotten.php cross site scriptingCVE-2020-7996
1493746.73.79.8
 
 
Dolibarr ERP CRM weak authenticationCVE-2020-7995
1493735.75.36.1
 
 
Dolibarr ERP CRM cross site scriptingCVE-2020-7994
1493726.54.38.8
 
 
Adive Framework cross site request forgeryCVE-2020-7991
1493715.24.36.1
 
 
Adive Framework cross site scriptingCVE-2020-7990
1493705.24.36.1
 
 
Adive Framework cross site scriptingCVE-2020-7989
1493696.45.37.5
 
 
Solarwinds N-central Password information disclosureCVE-2020-7984
1493657.47.37.5
 
 
Cisco Webex Meetings Suite/Webex Meetings Online weak authenticationCVE-2020-3142
1493646.37.35.3
 
 
Cisco Application Policy Infrastructure Controller OOB Management Interface privilege escalationCVE-2020-3139
1493635.75.36.1
 
 
Cisco Jabber Guest Web-based Management Interface cross site scriptingCVE-2020-3136
1493625.95.36.5
 
 
Cisco Email Security Appliance ZIP Decompression Engine Restart denial of serviceCVE-2020-3134
1493615.44.36.5
 
 
Cisco Webex Teams Client Crash denial of serviceCVE-2020-3131
1493604.54.34.8
 
 
Cisco Unity Connection Web-based Management Interface Stored cross site scriptingCVE-2020-3129
1493595.75.36.1
 
 
Cisco Small Business Smart Switch/Managed Switch Web-based Management Interface cross site scriptingCVE-2020-3121
1493588.37.88.8
 
 
Cisco SD-WAN Solution vManage CLI privilege escalationCVE-2020-3115
1493576.75.38.2
 
 
Cisco Smart Software Manager On-Prem API denial of serviceCVE-2019-16029
1493566.04.37.7
 
 
Cisco IOS XR denial of serviceCVE-2019-16027
1493555.23.76.8
 
 
Cisco Mobility Management Entity SCTP denial of serviceCVE-2019-16026
1493545.75.36.1
 
 
Cisco Crosswork Change Automation Web-based Management Interface cross site scriptingCVE-2019-16024
1493536.95.38.6
 
 
Cisco IOS XR Border Gateway Protocol Restart denial of serviceCVE-2019-16022
1493526.95.38.6
 
 
Cisco IOS XR Border Gateway Protocol Restart denial of serviceCVE-2019-16020
1493516.35.37.4
 
 
Cisco IOS XR Border Gateway Protocol Restart denial of serviceCVE-2019-16018
1493505.75.36.1
 
 
Cisco Data Center Analytics Framework Web-based Management Interface Reflected cross site scriptingCVE-2019-16015
1493494.84.35.4
 
 
Cisco IP Phone 6800/IP Phone 7800/IP Phone 8800 Web-based Interface cross site scriptingCVE-2019-16008
1493486.76.37.2
 
 
Cisco Webex Video Mesh Web-based Management Interface Command privilege escalationCVE-2019-16005
1493474.85.34.3
 
 
Cisco UCS Director Web-based Management Interface Log information disclosureCVE-2019-16003
1493466.95.38.6
 
 
Cisco IOS XR Border Gateway Protocol Restart denial of serviceCVE-2019-15989
1493455.75.36.1
 
 
Cisco Finesse Web-based Management Interface information disclosureCVE-2019-15278
1493445.44.36.5
 
 
Cisco Identity Services Engine Web-based Management Interface information disclosureCVE-2019-15255
1493435.56.34.7
 
 
Cisco SD-WAN Solution WebUI command injectionCVE-2019-12629
1493426.36.36.4
 
 
Cisco SD-WAN Solution Web Interface sql injectionCVE-2019-12619

Want to stay up to date on a daily basis?

Enable the mail alert feature now!