CVSSv3 08/27/2020info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCTICVE
1604428.88.88.8
 
8.8Red Lion N-Tron 702-W/N-Tron 702M12-W code injection0.05CVE-2017-16544
1604419.89.89.8
 
9.8Red Lion N-Tron 702-W/N-Tron 702M12-W backdoor0.08CVE-2020-16204
1604407.03.58.8
 
8.8Red Lion N-Tron 702-W/N-Tron 702M12-W cross-site request forgery0.04CVE-2020-16208
1604397.23.59.0
 
9.0Red Lion N-Tron 702-W/N-Tron 702M12-W cross site scripting0.04CVE-2020-16206
1604387.23.59.0
 
9.0Red Lion N-Tron 702-W/N-Tron 702M12-W cross site scripting0.00CVE-2020-16210
1604367.87.87.8
 
 
Thomson Reuters Eikon E1 IOT Orchestrator Security default permission0.06CVE-2019-10679
1604096.76.37.2
 
 
Trend Micro Micro Deep Security/Vulnerability Protection Management Console permission assignment0.05CVE-2020-8602
1604086.37.35.3
 
 
Dell EMC Isilon OneFS/EMC PowerScale OneFS Likewise memory corruption0.05CVE-2020-5383
1604076.96.67.2
 
 
IBM Security Guardium Insights privileges management0.04CVE-2020-4603
1604065.44.76.1
 
 
IBM WebSphere Application Server ND High Availability Deployment Manager cross site scripting0.00CVE-2020-4575
1604054.83.75.9
 
 
IBM Security Guardium Insights HSTS information disclosure0.00CVE-2020-4175
1604044.83.75.9
 
 
IBM Security Guardium Insights missing encryption0.04CVE-2020-4174
1604033.73.73.7
 
 
IBM Security Guardium Insights information disclosure0.04CVE-2020-4172
1604024.34.34.3
 
 
IBM Security Guardium Insights Web Page information disclosure0.04CVE-2020-4171
1604016.45.37.5
 
 
IBM Security Guardium Insights risky encryption0.04CVE-2020-4169
1604006.97.36.5
 
 
IBM Security Guardium Insights improper authentication0.04CVE-2020-4167
1603995.35.35.3
 
 
IBM Security Guardium Insights Error Message information disclosure0.05CVE-2020-4166
1603987.25.88.6
 
 
Cisco FXOS/NX-OS Fabric Services null pointer dereference0.00CVE-2020-3517
1603973.33.33.3
 
 
Cisco UCS Manager CLI resource control0.00CVE-2020-3504
1603968.08.87.2
 
 
Cisco NX-OS Call Home input validation0.04CVE-2020-3454
1603958.88.88.8
 
 
Cisco NX-OS Data Management Engine out-of-bounds write0.03CVE-2020-3415
1603946.95.38.6
 
 
Cisco NX-OS Border Gateway Protocol input validation0.07CVE-2020-3398
1603936.95.38.6
 
 
Cisco NX-OS Border Gateway Protocol input validation0.04CVE-2020-3397
1603927.87.87.8
 
 
Cisco Nexus 3000/Nexus 9000 Enable Secret improper authorization0.04CVE-2020-3394
1603916.45.37.5
 
 
Cisco NX-OS Protocol Independent Multicast denial of service0.05CVE-2020-3338
1603906.55.37.8
 
 
OpenZFS User Permission default permission0.05CVE-2020-24717
1603896.55.37.8
 
 
OpenZFS Permission permission assignment0.04CVE-2020-24716
1603888.57.39.8
 
 
Scalyr Agent SSL Certificate Validator certificate validation0.04CVE-2020-24715
1603878.57.39.8
 
 
Scalyr Agent SSL Certificate Validator certificate validation0.09CVE-2020-24714
1603865.44.76.1
 
 
WSO2 API Manager Try It Tool Reflected cross site scriting0.04CVE-2020-24706
1603857.56.38.8
 
 
WSO2 API Manager Carbon Management Console Session Hijacking improper authentication0.00CVE-2020-24705
1603845.44.76.1
 
 
WSO2 API Manager Try It Tool Reflected cross site scriting0.05CVE-2020-24704
1603837.56.38.8
 
 
WSO2 API Manager Carbon Management Console Session Hijacking improper authentication0.05CVE-2020-24703
1603825.44.36.5
 
 
JetBrains YouTrack authorization0.07CVE-2020-24618
1603815.24.36.1
 
 
EyesOfNetwork eonweb admin_logs Stored cross site scripting0.05CVE-2020-24390
1603808.57.39.8
 
 
Projects World Travel Management System Pic Upload updatesubcategory.php unrestricted upload0.06CVE-2020-24203
1603798.57.39.8
 
 
Projects World House Rental File Upload unrestricted upload0.05CVE-2020-24202
1603786.76.37.2
 
 
Online Bike Rental Vehicle Image Upload unrestricted upload0.04CVE-2020-24196
1603774.43.55.4
 
 
Online Hotel Booking System Pro PHP Registration Form Persistent cross site scripting0.08CVE-2020-23984
1603764.43.55.4
 
 
Michael-Design iChat Realtime PHP Live Support System Persistent cross site scripting0.06CVE-2020-23983
1603755.24.36.1
 
 
DesignMasterEvents Conference Management certificate.php cross site scripting0.05CVE-2020-23982
1603745.24.36.1
 
 
13enforme CMS content.php cross site scripting0.00CVE-2020-23981
1603738.57.39.8
 
 
DesignMasterEvents Conference Management Administrator Login Page sql injection0.00CVE-2020-23980
1603728.57.39.8
 
 
13enforme CMS content.php sql injection0.13CVE-2020-23979
1603718.57.39.8
 
 
Soluzione Globale Ecommerce CMS offerta.php sql injection0.05CVE-2020-23978
1603705.24.36.1
 
 
KandNconcepts Club CMS team.php cross site scripting0.07CVE-2020-23977
1603698.57.39.8
 
 
Webexcels Ecommerce CMS content.php sql injection0.06CVE-2020-23976
1603685.24.36.1
 
 
Webexcels Ecommerce CMS search.php cross site scripting0.07CVE-2020-23975
1603674.43.55.4
 
 
Create-Project Manager Online Chat/Social Feed/Message/Client Persistent cross site scripting0.05CVE-2020-23974
1603668.57.39.8
 
 
KandNconcepts Club CMS team.php sql injection0.00CVE-2020-23973

Do you know our Splunk app?

Download it now for free!