CVSSv3 May 2020info

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

C3BM Index »

Our unique C3BM Index (CVSSv3 Base Meta Index) cumulates the CVSSv3 Meta Base Scores of all entries over time. Comparing this index to the amount of disclosed vulnerabilities helps to pinpoint the most important events.

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

PublishedBaseVDBNVDVendResVulnerabilityCTICVE
05/29/20205.94.77.2
 
 
Pi-Hole Web DHCP code injection0.06CVE-2020-8816
05/29/20205.53.37.8
 
 
ABB Device Library Wizard Secure Storage insecure storage of sensitive information0.00CVE-2020-8482
05/29/20206.45.37.5
 
 
snyk-broker Debug Key information disclosure0.00CVE-2020-7654
05/29/20205.44.36.5
 
 
snyk-broker information disclosure0.08CVE-2020-7653
05/29/20205.44.36.5
 
 
snyk-broker path traversal0.04CVE-2020-7652
05/29/20204.34.34.3
 
 
snyk-broker Commits API information disclosure0.00CVE-2020-7651
05/29/20205.44.36.5
 
 
snyk-broker information disclosure0.04CVE-2020-7650
05/29/20205.44.36.5
 
 
snyk-broker information disclosure0.00CVE-2020-7648
05/29/20206.45.37.5
 
 
MuleSoft Mule Community Edition resource consumption0.05CVE-2020-6937
05/29/20203.93.34.6
 
 
Kintone Mobile information disclosure0.00CVE-2020-5573
05/29/20204.34.04.6
 
 
Mailwise Credentials information disclosure0.09CVE-2020-5572
05/29/20206.77.36.1
 
 
IBM Business Automation Workflow privileges management0.11CVE-2020-4490
05/29/20206.15.37.0
 
 
IBM MQ Restricted Mode privileges management0.07CVE-2020-4352
05/29/20204.74.15.4
 
 
IBM Planning Analytics Web UI cross site scripting0.00CVE-2020-4306
05/29/20203.33.33.3
 
 
VMware ESXi/Fusion/Workstation VMCI Module memory corruption0.05CVE-2020-3959
05/29/20204.43.35.5
 
 
VMware ESXi/Fusion/Workstation Shader input validation0.06CVE-2020-3958
05/29/20206.15.37.0
 
 
VMware Fusion privileges management0.05CVE-2020-3957
05/29/20206.45.37.5
 
 
Huawei CloudEngine 6800/CloudEngine 12800 release of resource0.06CVE-2020-1870
05/29/20202.42.42.4
 
 
Huawei Honor 9X Clock improper authentication0.06CVE-2020-1833
05/29/20207.56.38.8
 
 
Huawei E6878-370 out-of-bounds write1.80CVE-2020-1832
05/29/20203.95.32.4
 
 
Huawei Mate 20 Digital Balance authorization0.06CVE-2020-1831
05/29/20203.52.44.6
 
 
Huawei Mate 10 Voice Assistant information disclosure0.16CVE-2020-1809
05/29/20205.35.94.6
 
 
Huawei P30 NFC improper authentication0.00CVE-2020-1798
05/29/20203.44.32.4
 
 
Huawei Mate 20 ADB Mode authorization0.00CVE-2020-1797
05/29/20208.57.39.8
 
 
bbPress Plugin New User Registration privileges management0.06CVE-2020-13693
05/29/20207.26.67.8
 
 
Windows Master Driver WoptiHWDetect.SYS) Blue Screen input validation0.00CVE-2020-13634
05/29/20207.56.38.8
 
 
mappress-google-maps-for-wordpress Plugin Capability Check unrestricted upload0.05CVE-2020-12675
05/29/202010.010.010.0
 
 
SWARCO CPU LS4000 Access Control access control0.08CVE-2020-12493
05/29/20208.57.39.8
 
 
Micro Focus Service Management Automation Authorization authorization0.43CVE-2020-11844
05/29/20204.65.53.7
 
 
FreeRDP irp serial_process_irp_write out-of-bounds read0.24CVE-2020-11089
05/29/20203.13.13.1
 
 
FreeRDP ntlm_read_NegotiateMessage out-of-bounds read0.58CVE-2020-11088
05/29/20203.74.33.1
 
 
FreeRDP ntlm_read_AuthenticateMessage out-of-bounds read0.48CVE-2020-11087
05/29/20203.74.33.1
 
 
FreeRDP ntlm_read_ntlm_v2_client_challenge out-of-bounds read0.63CVE-2020-11086
05/29/20204.15.52.6
 
 
FreeRDP Clipboard cliprdr_read_format_list out-of-bounds read0.63CVE-2020-11085
05/29/20202.22.22.2
 
 
FreeRDP rfx_process_message_tileset out-of-bounds read1.22CVE-2020-11043
05/29/20202.22.22.2
 
 
FreeRDP array index2.01CVE-2020-11041
05/29/20202.22.22.2
 
 
FreeRDP clear_decompress_subcode_rlex out-of-bounds read0.08CVE-2020-11040
05/29/20207.57.18.0
 
 
FreeRDP USB Redirection integer overflow0.06CVE-2020-11039
05/29/20207.07.16.9
 
 
FreeRDP video Remote Code Execution1.74CVE-2020-11038
05/29/20204.34.34.3
 
 
FreeRDP out-of-bounds read0.07CVE-2020-11019
05/29/20205.44.36.5
 
 
FreeRDP out-of-bounds read0.05CVE-2020-11018
05/29/20206.45.37.5
 
 
FreeRDP double free0.05CVE-2020-11017
05/28/20207.27.37.1
 
 
Dell Dock Firmware Update Utilities uncontrolled search path0.06CVE-2020-5357
05/28/20203.62.44.8
 
 
CMS Made Simple File Picker Profile Name cross site scripting0.04CVE-2020-13660
05/28/20204.83.75.9
 
 
Netgear R7000 SSL Certificate Validator certificate validation0.05CVE-2020-13245
05/28/20206.55.37.8
 
 
Teradici PCoIP Standard Agent/Graphics Agent Named Pipe pcoip_credential_provider privileges management0.05CVE-2020-13173
05/28/20205.34.36.4
 
 
Kaminari Pagination Link cross site scripting0.05CVE-2020-11082
05/28/20208.48.38.6
 
 
node-dns-sync code injection0.04CVE-2020-11079
05/28/20205.35.35.3
 
 
Lenovo Printer LJ4010DN denial of service0.04CVE-2020-8330
05/28/20205.35.35.3
 
 
Lenovo Printer LJ4010DN denial of service0.04CVE-2020-8329

Do you want to use VulDB in your project?

Use the official API to access entries easily!