CVSSv3 06/18/2020info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCVE
1569555.55.57.8
 
 
FusionSphere OpenStack Permission Management privilege escalationCVE-2020-9225
1569547.37.37.3
 
 
mversion Library Remote Code ExecutionCVE-2020-4059
1569533.53.56.5
 
 
Huawei Mate 30 Bluetooth information disclosureCVE-2020-1835
1569524.64.64.6
 
 
Huawei P30/P30 Pro Software Package Integrity Check weak authenticationCVE-2020-1834
1569516.67.16.1
 
 
WSO2 Identity Server/IS as Key Manager Open RedirectCVE-2020-14446
1569504.24.14.4
 
 
WSO2 Identity Server/IS as Key Manager Management Console Basic Policy Editor Reflected cross site scriptingCVE-2020-14445
1569494.74.15.4
 
 
WSO2 Identity Server/IS as Key Manager Management Console Policy Administration Reflected cross site scriptingCVE-2020-14444
1569486.36.38.8
 
 
Dolibarr ERP CRM card.php sql injectionCVE-2020-14443
1569477.56.38.8
 
 
Netgear RBS850 command injectionCVE-2020-14442
1569467.56.38.8
 
 
Netgear RBS850 command injectionCVE-2020-14441
1569457.56.38.8
 
 
Netgear RBS850 command injectionCVE-2020-14440
1569447.56.38.8
 
 
Netgear RBS850 command injectionCVE-2020-14439
1569437.56.38.8
 
 
Netgear RBS850 command injectionCVE-2020-14438
1569427.56.38.8
 
 
Netgear RBS850 command injectionCVE-2020-14437
1569405.95.06.8
 
 
Netgear SRK60B06 command injectionCVE-2020-14435
1569397.46.58.4
 
 
Netgear RBS840 command injectionCVE-2020-14434
1569387.46.58.4
 
 
Netgear RBS750 command injectionCVE-2020-14433
1569376.24.18.4
 
 
Netgear RBS850 cross site request forgeryCVE-2020-14432
1569367.14.79.6
 
 
Netgear RBS850 Credentials information disclosureCVE-2020-14431
1569357.14.79.6
 
 
Netgear RBS850 Credentials information disclosureCVE-2020-14430
1569347.14.79.6
 
 
Netgear RBS850 Credentials information disclosureCVE-2020-14429
1569337.14.79.6
 
 
Netgear RBS850 Credentials information disclosureCVE-2020-14428
1569327.14.79.6
 
 
Netgear RBS850 Credentials information disclosureCVE-2020-14427
1569317.14.79.6
 
 
Netgear RBS840 Credentials information disclosureCVE-2020-14426
1569302.62.65.3
 
 
Convos Password Reset Settings.pm weak authenticationCVE-2020-14423
1569295.35.37.5
 
 
Python ipaddress.py IPv6Interface denial of serviceCVE-2020-14422
1569286.36.38.8
 
 
aaPanel Script Content Box Command privilege escalationCVE-2020-14421
1569275.35.34.2
 
 
CISOfy Lynis Access Control TOCTOU privilege escalationCVE-2020-13882
1569266.36.39.8
 
 
gVectors wpDiscuz Plugin wpdLoadMoreComments sql injectionCVE-2020-13640
1569255.55.57.5
 
 
ARM Mbed OS CoAP Library sn_coap_parser_options_parse() memory corruptionCVE-2020-12887
1569245.55.59.1
 
 
ARM Mbed OS CoAP Library sn_coap_parser_options_parse() memory corruptionCVE-2020-12886
1569233.53.57.5
 
 
ARM Mbed OS CoAP Library sn_coap_parser_options_parse_multiple_options() denial of serviceCVE-2020-12885
1569225.55.59.1
 
 
ARM Mbed OS CoAP Library sn_coap_parser_options_parse_multiple_options() memory corruptionCVE-2020-12884
1569215.55.59.1
 
 
ARM Mbed OS CoAP Library sn_coap_parser_options_parse() memory corruptionCVE-2020-12883
1569205.55.59.8
 
 
Sophos XG Firewall awarrensmtp Heap-based memory corruptionCVE-2020-11503
1569195.13.86.5
 
 
Ansible Tower rsyslog Token information disclosureCVE-2020-10782
1569183.33.33.3
 
 
CISOfy Lynis License Key information disclosureCVE-2019-13033
1569175.55.55.9
 
 
Linux Kernel slip.c memory corruptionCVE-2020-14416
1569126.67.35.8
 
 
Cisco Cisco Email Security Appliance Antispam Protection Mechanism privilege escalationCVE-2020-3368
1569116.37.35.3
 
 
Cisco IOS XR Gigabit Ethernet Management Interface privilege escalationCVE-2020-3364
1569103.62.54.7
 
 
Cisco Network Services Orchestrator CLI Timing information disclosureCVE-2020-3362
1569096.85.68.1
 
 
Cisco Webex Meetings/WebEx Meetings Server privilege escalationCVE-2020-3361
1569085.35.35.3
 
 
Cisco IP Phone 7800/IP Phone 8800 Web-based Management Interface information disclosureCVE-2020-3360
1569075.75.36.1
 
 
Cisco Data Center Network Manager Web-based Management Interface Stored cross site scriptingCVE-2020-3356
1569064.54.34.8
 
 
Cisco Data Center Network Manager Web-based Management Interface Stored cross site scriptingCVE-2020-3355
1569054.54.34.8
 
 
Cisco Data Center Network Manager Web-based Management Interface Stored cross site scriptingCVE-2020-3354
1569044.94.45.5
 
 
Cisco AMP for Endpoints privilege escalationCVE-2020-3350
1569034.43.35.5
 
 
Cisco Webex Meetings Desktop App information disclosureCVE-2020-3347
1569028.07.38.8
 
 
Cisco Webex Meetings Desktop App Software Update privilege escalationCVE-2020-3342
1569016.07.34.7
 
 
Cisco Umbrella Web Application Open RedirectCVE-2020-3337

Do you know our Splunk app?

Download it now for free!