CVSSv3 03/30/2020info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCTICVE
1524523.63.33.9
 
 
Versiant LYNX Customer Service Portal Stored cross site scripting0.00CVE-2020-9055
1524516.45.37.5
 
 
Zoho ManageEngine Desktop Central PDFGenerationServlet information disclosure0.06CVE-2020-8509
1524509.89.89.8
 
 
http-client request smuggling0.05CVE-2020-7611
1524499.89.89.8
 
 
bson deserialization0.05CVE-2020-7610
1524485.44.36.5
 
 
com.gradle.plugin-publish Log File log file0.04CVE-2020-7599
1524476.45.37.5
 
 
Grandstream UCM6200 CTI Server sql injection0.07CVE-2020-5726
1524465.65.35.9
 
 
Grandstream UCM6200 HTTP Server sql injection0.00CVE-2020-5725
1524456.45.37.5
 
 
Grandstream UCM6200 HTTP Server sql injection0.05CVE-2020-5724
1524447.55.39.8
 
 
UCM6200 cleartext storage0.08CVE-2020-5723
1524436.66.56.8
 
 
Elide improper authorization0.05CVE-2020-5289
1524425.05.54.4
 
 
Next.js path traversal0.07CVE-2020-5284
1524417.06.57.6
 
 
Symfony security-http Rule improper authorization0.00CVE-2020-5275
1524404.64.64.6
 
 
Symfony Exception information exposure0.05CVE-2020-5274
1524392.62.62.6
 
 
Symfony Response denial of service0.06CVE-2020-5255
1524385.24.36.1
 
 
Responsive FileManager dialog.php Stored cross site scripting0.07CVE-2020-11106
1524379.89.89.8
 
 
USC iLab Cereal Cache shared_ptr release of reference0.09CVE-2020-11105
1524366.37.35.3
 
 
USC iLab Cereal Serialization memory corruption0.09CVE-2020-11104
1524355.65.35.9
 
 
OSSN Permission ossn_com.php rand risky encryption0.06CVE-2020-10560
1524348.57.39.8
 
 
Paessler PRTG Network Monitor Screenshot input validation0.07CVE-2020-10374
1524335.85.36.3
 
 
Vertiv Avocent UMG-4000 Web Interface Reflected cross site scripting0.00CVE-2019-9509
1524325.85.36.3
 
 
Vertiv Avocent UMG-4000 Web Interface Stored cross site scripting0.06CVE-2019-9508
1524319.19.88.3
 
 
Vertiv Avocent UMG-4000 Code Syntax Remote Code Execution0.06CVE-2019-9507
1524307.56.38.8
 
 
webERP Import Bank Transaction sql injection0.00CVE-2019-7755
1524297.25.39.1
 
 
ProofPoint Email Protection Email Header input validation0.04CVE-2019-20634
1524283.62.44.8
 
 
Intland codeBeamer ALM Tracker Stored cross site scripting0.00CVE-2019-19913
1524273.72.74.8
 
 
Intland codeBeamer ALM Upload Flash File cross site scripting0.06CVE-2019-19912
1524268.57.39.8
 
 
X-Plane os command injection0.00CVE-2019-19606
1524258.57.39.8
 
 
X-Plane out-of-bounds write0.00CVE-2019-19605
1524246.55.67.5
 
 
Apache NetBeans AutoUpdate input validation0.00CVE-2019-17561
1524237.35.69.1
 
 
Apache NetBeans AutoUpdate certificate validation0.00CVE-2019-17560
1524226.54.38.8
 
 
Toyota Lexus LC Display Control Unit default permission0.05CVE-2020-5551
1524216.45.37.5
 
 
Mitsubishi Electric MELSEC iQ-R/MELSEC iQ-F/MELSEC Q/MELSEC L/MELSEC F Transmission Port resource consumption0.04CVE-2020-5527

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!