CVSSv3 04/01/2020info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCVE
1526835.44.36.5
 
 
Tiki-Wiki CMS Web Page cross site scriptingCVE-2020-8966
1526827.87.87.8
 
 
UniFi Video DLL privilege escalationCVE-2020-8146
1526816.46.36.5
 
 
UniFi Video Server Privilege Check privilege escalationCVE-2020-8145
1526807.15.98.4
 
 
UniFi Video Server Web Interface Firmware Update directory traversalCVE-2020-8144
1526797.56.38.8
 
 
Auth0 Plugin privilege escalationCVE-2020-7948
1526788.57.39.8
 
 
Auth0 Plugin Export CSV Injection privilege escalationCVE-2020-7947
1526775.34.26.5
 
 
ENS Access Control ESConfigTool.exe privilege escalationCVE-2020-7263
1526765.44.76.1
 
 
Auth0 Plugin Login Stored cross site scriptingCVE-2020-6753
1526758.57.39.8
 
 
GNU C Library Comparison memcpy() Out-of-Bounds memory corruptionCVE-2020-6096
1526748.57.39.8
 
 
LearnDash Plugin sql injectionCVE-2020-6009
1526736.45.37.5
 
 
Yamaha FWX120 denial of serviceCVE-2020-5548
1526725.44.76.1
 
 
Auth0 Plugin Settings Page Stored cross site scriptingCVE-2020-5392
1526717.56.38.8
 
 
Auth0 Plugin cross site request forgeryCVE-2020-5391
1526706.87.16.5
 
 
RedpwnCTF Session Fixation weak authenticationCVE-2020-5290
1526696.46.36.5
 
 
Apache Druid LDAP Authentication privilege escalationCVE-2020-1958
1526685.35.35.3
 
 
Apache CXF JMX Man-in-the-Middle information disclosureCVE-2020-1954
1526675.24.36.1
 
 
Sling CMS Administrative Console Reflected cross site scriptingCVE-2020-1949
1526665.24.36.1
 
 
Apache OFBiz stream cross site scriptingCVE-2020-1943
1526658.06.39.8
 
 
Apache HTTP Server mod_proxy_ftp Uninitialized Memory memory corruptionCVE-2020-1934
1526633.34.22.3
 
 
Zoom Client for Meetings Library privilege escalationCVE-2020-11470
1526626.46.46.3
 
 
Zoom Client for Meetings Installation privilege escalationCVE-2020-11469
1526617.86.69.1
 
 
Deskpro Helpdesk Interface template-sources Remote Code ExecutionCVE-2020-11467
1526605.94.37.6
 
 
Deskpro Endpoint tickets information disclosureCVE-2020-11466
1526596.54.38.8
 
 
Deskpro Helpdesk Application information disclosureCVE-2020-11465
1526585.44.36.5
 
 
Deskpro Endpoint people information disclosureCVE-2020-11464
1526577.47.37.5
 
 
Deskpro email_accounts privilege escalationCVE-2020-11463
1526564.43.55.4
 
 
pfSense WebGUI system_usermanager_addprivs.php Stored cross site scriptingCVE-2020-11457
1526555.24.36.1
 
 
LimeSurvey surveySettings.php Stored cross site scriptingCVE-2020-11456
1526546.37.35.3
 
 
LimeSurvey LimeSurveyFileManager.php directory traversalCVE-2020-11455
1526536.45.37.5
 
 
Technicolor TC7337 Backup File backupsettings.conf Credentials information disclosureCVE-2020-11449
1526528.57.39.8
 
 
Jon Hedley AlienForm2 af.cgi Eval privilege escalationCVE-2020-10948
1526517.47.37.5
 
 
Avast Antivirus TaskEx Library AvastSvc.exe privilege escalationCVE-2020-10868
1526508.57.39.8
 
 
Avast Antivirus TaskEx Library AvastSvc.exe privilege escalationCVE-2020-10867
1526496.45.37.5
 
 
Avast Access Point TaskEx Library AvastSvc.exe information disclosureCVE-2020-10866
1526487.47.37.5
 
 
Avast Antivirus TaskEx Library AvastSvc.exe privilege escalationCVE-2020-10865
1526475.44.36.5
 
 
Avast Antivirus TaskEx Library AvastSvc.exe Reboot denial of serviceCVE-2020-10864
1526466.45.37.5
 
 
Avast Antivirus TaskEx Library AvastSvc.exe Shutdown denial of serviceCVE-2020-10863
1526456.55.37.8
 
 
Avast Antivirus TaskEx Library AvastSvc.exe privilege escalationCVE-2020-10862
1526446.45.37.5
 
 
Avast Antivirus TaskEx Library AvastSvc.exe denial of serviceCVE-2020-10861
1526436.45.37.5
 
 
Avast Antivirus aswAvLog Log Library AvastSvc.exe denial of serviceCVE-2020-10860
1526425.24.36.1
 
 
BD Pyxis MedStation ES System Kiosk Mode privilege escalationCVE-2020-10598
1526416.45.37.5
 
 
TP-LINK NC200/NC210/NC220/NC230/NC250/NC260/NC450 NULL Pointer Dereference denial of serviceCVE-2020-10231
1526407.56.38.8
 
 
Sonatype Nexus Repository Remote Code ExecutionCVE-2020-10204
1526393.62.44.8
 
 
Sonatype Nexus Repository cross site scriptingCVE-2020-10203
1526387.56.38.8
 
 
Sonatype Nexus Repository JavaEL Injection privilege escalationCVE-2020-10199
1526378.57.39.8
 
 
March Networks Command Client XAML Object privilege escalationCVE-2019-9163
1526366.45.37.5
 
 
Parrot ANAFI Web Server Crash denial of serviceCVE-2019-3945
1526356.45.47.5
 
 
Parrot ANAFI denial of serviceCVE-2019-3944
1526346.45.37.5
 
 
Advantech WebAccess RPC information disclosureCVE-2019-3942
1526338.57.39.8
 
 
Apache Dubbo Deserialization privilege escalationCVE-2019-17564

Do you know our Splunk app?

Download it now for free!