CVSSv3 07/20/2020info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCTICVE
1588466.45.37.5
 
 
servey path traversal0.00CVE-2020-8214
1588455.24.36.1
 
 
docsify cross site scripting0.07CVE-2020-7680
1588445.24.36.1
 
 
ZTE R5300 G4/R5500 G4/R8500 G4 Server Management cross site scripting0.00CVE-2020-6872
1588438.57.39.8
 
 
ZTE R5300 G4/R5500 G4/R8500 G4 Server Management improper authentication0.07CVE-2020-6871
1588429.38.89.9
 
 
AMD Radeon DirectX 11 Driver Shader rdvgm.exe out-of-bounds write0.00CVE-2020-6103
1588419.38.89.9
 
 
AMD Radeon DirectX 11 Driver Shader rdvgm.exe input validation0.07CVE-2020-6102
1588409.38.89.9
 
 
AMD Radeon DirectX 11 Driver Shader rdvgm.exe out-of-bounds write0.00CVE-2020-6101
1588399.28.59.9
 
 
AMD Graphics Driver Pixel Shader rdvgm.exe out-of-bounds write0.07CVE-2020-6100
1588386.24.38.1
 
 
HCL Marketing Operations code download0.00CVE-2020-4125
1588376.45.37.5
 
 
ClamAV Antivirus EGG Archive Parser null pointer dereference0.07CVE-2020-3481
1588363.93.14.8
 
 
DuoConnect Client cleartext transmission0.00CVE-2020-3442
1588354.55.53.5
 
 
OTRS Community Edition session expiration0.04CVE-2020-1776
1588346.55.37.8
 
 
Linux Kernel default permission0.04CVE-2020-15852
1588338.27.19.3
 
 
codecov Package Upload os command injection0.00CVE-2020-15123
1588327.27.17.4
 
 
radare2 PDB File Name os command injection0.08CVE-2020-15121
1588314.02.45.7
 
 
Wagtail wagtail.contrib.forms cross site scripting0.00CVE-2020-15118
1588304.65.04.2
 
 
Fiber c.Attachment crlf injection0.04CVE-2020-15111
1588295.24.36.1
 
 
Artica Proxy CE Reflected cross site scripting0.05CVE-2020-15053
1588287.47.37.5
 
 
Artica Proxy CE sql injection0.00CVE-2020-15052
1588275.24.36.1
 
 
Apache ActiveMQ Artemis MQTT cross site scripting0.05CVE-2020-13932
1588266.45.37.5
 
 
Rockwell Automation FactoryTalk View SE memory corruption0.00CVE-2020-12031
1588256.45.57.3
 
 
Rockwell Automation FactoryTalk View SEA access control0.04CVE-2020-12028
1588244.34.34.3
 
 
Rockwell Automation FactoryTalk View SE information disclosure0.06CVE-2020-12027
1588237.56.38.8
 
 
Canvas Image buffer overflow0.04CVE-2020-8215
1588227.47.37.5
 
 
uppy Package server-side request forgery0.00CVE-2020-8205
1588214.83.75.9
 
 
IBM Planning Analytics Session Cookie HSTS missing encryption0.03CVE-2020-4527
1588205.44.36.5
 
 
IBM MQ for HPE NonStop Queue denial of service0.04CVE-2020-4466
1588194.34.34.3
 
 
IBM Planning Analytics IP Address information disclosure0.04CVE-2020-4361
1588186.55.37.8
 
 
Asus ScreenPad2_Upgrade_Tool.msi AsusScreenXpertServicec.exe untrusted search path0.05CVE-2020-15009
1588176.73.79.8
 
 
OpenClinic GA Authentication Mechanism improper authentication0.00CVE-2020-14494
1588166.46.36.5
 
 
OpenClinic GA Permission authorization0.07CVE-2020-14491
1588158.57.39.8
 
 
OpenClinic GA Access Control authentication bypass0.07CVE-2020-14485
1588146.73.79.8
 
 
OpenClinic GA Account Lockout excessive authentication0.06CVE-2020-14484
1588138.17.39.0
 
 
Rockwell Automation FactoryTalk View SE Project Directory input validation0.06CVE-2020-12029
1588127.77.38.1
 
 
Liferay Portal/Liferay DXP deserialization0.07CVE-2020-15842
1588116.03.78.3
 
 
Liferay Portal/Liferay DXP LDAP Server Connection Password information disclosure0.06CVE-2020-15841

Do you know our Splunk app?

Download it now for free!