CVSSv3 10/21/2020

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCTICVE
1642805.44.36.5
 
 
QEMU ati-vga Emulator process ati_2d_blt out-of-bounds read0.09CVE-2020-27616
1642795.03.56.5
 
 
QEMU Networking Helper eth_get_gso_type assertion0.00CVE-2020-27617
1629797.26.38.2
 
 
Lightning Network Daemon HTLC improper validation of integrity check value0.04CVE-2020-26896
1629785.45.55.3
 
 
Lightning Network Daemon HTLC Transaction improper validation of integrity check value0.09CVE-2020-26895
1629777.56.38.8
 
 
TIBCO Foresight Archive and Retrieval System Transaction Insight Reporting sql injection0.02CVE-2020-9417
1629766.36.3
 
 
 
Yandex Browser Address Bar clickjacking0.00CVE-2020-7371
1629756.36.3
 
 
 
Danyil Vasilenko Bolt Browser Address Bar clickjacking0.09CVE-2020-7370
1629746.36.3
 
 
 
Yandex Browser Address Bar clickjacking0.00CVE-2020-7369
1629735.36.34.3
 
 
Ucweb UC Browser Address Bar clickjacking0.04CVE-2020-7364
1629725.36.34.3
 
 
Ucweb UC Browser Address Bar clickjacking0.00CVE-2020-7363
1629716.96.67.2
 
 
Nagios XI Apache User neutralization0.00CVE-2020-5792
1629706.96.67.2
 
 
Apache Operating System os command injection0.00CVE-2020-5791
1629695.44.36.5
 
 
Nagios XI cross-site request forgery0.00CVE-2020-5790
1629684.84.35.3
 
 
VMware ESXi/Workstation/Fusion VMCI Host Driver resource consumption0.09CVE-2020-3995
1629675.43.57.4
 
 
VMware vCenter Server Appliance Appliance Management Interface certificate validation0.07CVE-2020-3994
1629665.75.55.9
 
 
VMware NSX-T NSX Manager unknown vulnerability0.06CVE-2020-3993
1629657.24.79.8
 
 
VMware ESXi OpenSLP use after free0.06CVE-2020-3992
1629647.47.27.7
 
 
VMware ESXi/Workstation/Fusion VMX Process out-of-bounds write0.08CVE-2020-3982
1629635.65.55.8
 
 
VMware ESXi/Workstation/Fusion VMX Process out-of-bounds read0.07CVE-2020-3981
1629625.94.37.5
 
 
Mozilla Network Security Services CCS Message denial of service0.00CVE-2020-25648
1629616.96.37.5
 
 
R-SeeNet Webpage sql injection0.00CVE-2020-25157
1629606.45.37.5
 
 
InterMind iMind Self-Diagnostic Archive information disclosure0.06CVE-2020-24765
1629595.75.36.1
 
 
Adobe Marketo Sales Insight Plugin cross site scripting0.07CVE-2020-24416
1629586.36.3
 
 
 
Adobe Illustrator SVG File memory corruption0.00CVE-2020-24415
1629576.36.3
 
 
 
Adobe Illustrator SVG File memory corruption0.01CVE-2020-24414
1629566.36.3
 
 
 
Adobe Illustrator SVG File memory corruption0.00CVE-2020-24413
1629556.36.3
 
 
 
Adobe Illustrator SVG File memory corruption0.08CVE-2020-24412
1629546.36.3
 
 
 
Adobe Illustrator PDF File out-of-bounds write0.00CVE-2020-24411
1629536.36.3
 
 
 
Adobe Illustrator PDF File out-of-bounds read0.02CVE-2020-24410
1629526.36.3
 
 
 
Adobe Illustrator PDF File out-of-bounds read0.00CVE-2020-24409
1629515.94.37.5
 
 
Netwrix Account Lockout Examiner improper authentication0.08CVE-2020-15931
1629507.35.69.1
 
 
Spree Storefront API v2 Endpoint session expiration0.00CVE-2020-15269
1629498.49.07.8
 
 
Boxstarter Installer WptsExtensions.dll DllMain untrusted search path0.06CVE-2020-15264
1629485.53.57.5
 
 
DomainMod Password Storage hash without salt0.00CVE-2019-9080
1629474.13.44.8
 
 
SAP NetWeaver Design Time Repository cross site scripting0.01CVE-2020-6370
1629466.67.35.9
 
 
SAP Solution Manager/Focused Run hard-coded password0.00CVE-2020-6369
1629455.44.76.1
 
 
SAP NetWeaver Composite Application Framework cross site scripting0.06CVE-2020-6367
1629445.34.16.5
 
 
SAP NetWeaver Compare Systems information disclosure0.07CVE-2020-6366

Do you need the next level of professionalism?

Upgrade your account now!