CVSSv3 08/26/2020info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCTICVE
1603553.74.33.1
 
 
F5 BIG-IP ASM Configuration Utility cross-site request forgery0.08CVE-2020-5928
1603545.24.36.1
 
 
F5 BIG-IP ASM Configuration Utility Stored cross site scripting0.06CVE-2020-5927
1603537.47.37.5
 
 
F5 BIG-IP/BIG-IP Virtual Edition Session Initiation Protocol denial of service0.02CVE-2020-5926
1603526.45.37.5
 
 
F5 BIG-IP Traffic Management Microkernel unusual condition0.06CVE-2020-5925
1603516.45.37.5
 
 
F5 BIG-IP MCPD Context Message resource consumption0.00CVE-2020-5921
1603504.83.75.9
 
 
GNOME Geary TLS Certificate Verification certificate validation0.00CVE-2020-24661
1603495.24.36.1
 
 
Joomla CMS mod_latestactions cross site scripting0.06CVE-2020-24599
1603486.67.16.1
 
 
Joomla CMS com_content redirect0.02CVE-2020-24598
1603474.43.55.4
 
 
webTareas Search cross site scripting0.02CVE-2020-23660
1603464.43.55.4
 
 
WebPort Connection cross site scripting0.00CVE-2020-23659
1603454.43.55.4
 
 
php-fusion poll_admin.php cross site scripting0.00CVE-2020-23658
1603444.74.15.4
 
 
NavigateCMS Configuration cross site scripting0.00CVE-2020-23657
1603434.74.15.4
 
 
NavigateCMS Content cross site scripting0.00CVE-2020-23656
1603424.74.15.4
 
 
NavigateCMS Configuration cross site scripting0.00CVE-2020-23655
1603414.74.15.4
 
 
NavigateCMS Shop cross site scripting0.00CVE-2020-23654
1603406.73.79.8
 
 
OpenStack Nova guest.py Guest.migrate xml external entity reference0.03CVE-2020-17376
1603394.83.16.5
 
 
Dr Trust ECG Pen Bluetooth LE information disclosure0.08CVE-2020-15486
1603386.77.85.5
 
 
Nescomed Multipara Monitor M1000 Flash Memory cleartext storage0.08CVE-2020-15485
1603376.86.86.8
 
 
Nescomed Multipara Monitor M1000 Debug Port insufficiently protected credentials0.00CVE-2020-15483
1603365.73.77.8
 
 
Nescomed Multipara Monitor M1000 Telnet Service insufficiently protected credentials0.02CVE-2020-15482
1603357.57.47.7
 
 
libIEC61850 COTP Message memory corruption0.01CVE-2020-15158
1603345.13.56.8
 
 
nodebb-plugin-blog-comments cross-site request forgery0.03CVE-2020-15156
1603337.26.38.1
 
 
Mitel MiCollab SAS Portal Header Injection injection0.02CVE-2020-13863
1603324.43.55.4
 
 
HiveMQ Broker Control Center Management Console Reflected cross site scripting0.00CVE-2020-13821
1603314.22.55.9
 
 
Mitel MiCollab App Access Control missing authentication0.02CVE-2020-13767
1603306.45.37.5
 
 
Mitel MiVoice 6800/MiVoice 6900 Web UI excessive authentication0.05CVE-2020-13617
1603297.56.38.8
 
 
SecZetta NEProfile Header Injection injection0.05CVE-2020-12855
1603287.56.38.8
 
 
Mitel MiVoice Connect Client Chat Message path traversal0.06CVE-2020-12456
1603276.45.37.5
 
 
Mitel MiCollab AWV Published Aread missing authentication0.02CVE-2020-11797
1603268.07.38.8
 
 
Aruba Intelligent Edge Switch Web UI authorization0.00CVE-2019-5321
1603255.24.36.1
 
 
Aruba Intelligent Edge Switch Web UI cross site scripting0.00CVE-2019-5320
1603247.56.38.8
 
 
IBM Security Guardium Data Encryption command injection0.05CVE-2019-4713
1603235.35.35.3
 
 
IBM Security Guardium Data Encryption Debug information disclosure0.03CVE-2019-4701
1603222.72.72.7
 
 
IBM Security Guardium Data Encryption Error Message information disclosure0.03CVE-2019-4699
1603215.43.47.4
 
 
IBM Security Guardium Data Encryption Password Policy missing encryption0.02CVE-2019-4698
1603204.23.15.3
 
 
IBM Security Guardium Data Encryption Credentials missing encryption0.06CVE-2019-4697
1603194.04.04.0
 
 
IBM Security Guardium Data Encryption information disclosure0.04CVE-2019-4695
1603185.44.06.8
 
 
IBM Security Guardium Data Encryption hard-coded credentials0.00CVE-2019-4694
1603174.12.36.0
 
 
IBM Security Guardium Data Encryption Credentials missing encryption0.00CVE-2019-4693
1603165.35.35.3
 
 
IBM Security Guardium Data Encryption information disclosure0.06CVE-2019-4692

Do you need the next level of professionalism?

Upgrade your account now!