CVSSv3 01/19/2021

CVSSv3 Base

≤10
≤20
≤316
≤410
≤558
≤6106
≤799
≤895
≤9127
≤1025

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp

≤10
≤20
≤316
≤410
≤558
≤6131
≤785
≤896
≤9118
≤1022

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB

≤10
≤20
≤316
≤425
≤553
≤6108
≤794
≤892
≤9121
≤1027

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD

≤10
≤20
≤30
≤41
≤527
≤657
≤733
≤871
≤935
≤1028

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

CNA

≤10
≤20
≤316
≤49
≤528
≤646
≤764
≤830
≤999
≤109

A CVE Numbering Authority (CNA) is responsible for assigning new CVE entries. They might also include a CVSS score. These are usually not complete and might differ from VulDB scores.

Vendor

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDCNAVendResVulnerabilityCTIEPSSCVE
1912233.83.8
 
3.8
 
 
Oracle VM VirtualBox information disclosure0.030.00885CVE-2022-21295
1912226.56.5
 
6.5
 
 
Oracle VM VirtualBox information disclosure0.040.00885CVE-2022-21394
1912214.84.84.8
 
 
 
Oracle Utilities Testing Accelerator Tools path traversal0.040.07767CVE-2021-29425
1912205.35.35.3
 
 
 
Oracle Utilities Testing Accelerator Tools request smuggling0.040.05242CVE-2021-33037
1912195.55.55.5
 
 
 
Oracle Utilities Testing Accelerator Tools denial of service0.030.03032CVE-2021-36374
1912187.57.57.5
 
 
 
Oracle Utilities Testing Accelerator Tools deserialization0.060.68637CVE-2021-4104
1912177.57.57.5
 
 
 
Oracle Utilities Testing Accelerator Tools denial of service0.070.07767CVE-2021-36090
1912167.87.87.8
 
 
 
Oracle Utilities Testing Accelerator Tools privileges management0.000.01034CVE-2021-22118
1912158.38.3
 
8.3
 
 
Oracle Utilities Testing Accelerator Tools Remote Code Execution0.020.01537CVE-2021-2351
1912148.38.3
 
8.3
 
 
Oracle Utilities Framework General Remote Code Execution0.030.01537CVE-2021-2351
1912138.78.88.88.5
 
 
Oracle Utilities Testing Accelerator Tools deserialization0.050.07218CVE-2021-39139
1912128.88.88.8
 
 
 
Oracle Utilities Testing Accelerator Tools Privilege Escalation0.020.03052CVE-2020-13936
1912118.78.88.88.5
 
 
Oracle Utilities Framework General deserialization0.030.07218CVE-2021-39139
1912109.19.19.1
 
 
 
Oracle Utilities Framework Common unusual condition0.020.01183CVE-2021-27568
1912099.89.8
 
9.8
 
 
Oracle Utilities Framework General Remote Code Execution0.020.13646CVE-2020-14756
1912083.93.9
 
3.9
 
 
Oracle Solaris Install unknown vulnerability0.020.00885CVE-2022-21298
1912074.84.8
 
4.8
 
 
Oracle Solaris Fault Management Architecture Local Privilege Escalation0.030.00885CVE-2022-21263
1912065.35.3
 
5.3
 
 
Oracle Solaris Libraries denial of service0.020.00954CVE-2022-21271
1912055.55.5
 
5.5
 
 
Oracle Solaris Kernel denial of service0.020.00885CVE-2022-21375
1912046.56.5
 
 
 
 
Oracle Solaris Filesystem denial of service0.020.00000CVE-2021-43395
1912036.97.47.45.9
 
 
Oracle Fujitsu M10-1, M10-4, M10-4S, M12-1, M12-2, M12-2S Servers XCP Firmware input validation0.070.01319CVE-2020-13817
1912027.57.57.5
 
 
 
Oracle Fujitsu M10-1, M10-4, M10-4S, M12-1, M12-2, M12-2S Servers XCP Firmware denial of service0.040.04720CVE-2021-23840
1912017.57.57.5
 
 
 
Oracle Fujitsu M10-1, M10-4, M10-4S, M12-1, M12-2, M12-2S Servers XCP Firmware denial of service0.000.01108CVE-2021-3326
1912007.57.57.5
 
 
 
Oracle Fujitsu M10-1, M10-4, M10-4S, M12-1, M12-2, M12-2S Servers XCP Firmware denial of service0.000.02686CVE-2020-8285
1911998.38.3
 
8.3
 
 
Oracle ZFS Storage Application Integration Engineering Software Snap Management Utility Remote Code Execution0.030.01537CVE-2021-2351
1911988.68.68.6
 
 
 
Oracle ZFS Storage Appliance Kit Operating System Image out-of-bounds write0.040.02686CVE-2021-3517
1911974.84.84.8
 
 
 
Oracle OSS Support Tools Diagnostic Assistant path traversal0.030.07767CVE-2021-29425
1911966.16.16.1
 
 
 
Oracle OSS Support Tools Diagnostic Assistant cross site scripting0.030.03932CVE-2016-7103
1911958.38.3
 
8.3
 
 
Oracle OSS Support Tools Diagnostic Assistant Remote Code Execution0.000.01537CVE-2021-2351
1911949.19.19.1
 
 
 
Oracle OSS Support Tools Diagnostic Assistant unusual condition0.020.01183CVE-2021-27568
1911935.35.35.3
 
 
 
Oracle Agile PLM Security request smuggling0.030.05242CVE-2021-33037
1911925.55.55.5
 
 
 
Oracle Agile PLM MCAD Connector CAX Client information disclosure0.070.03812CVE-2020-17521
1911915.55.55.5
 
 
 
Oracle Agile PLM Security denial of service0.040.03032CVE-2021-36374
1911906.16.16.1
 
 
 
Oracle Agile PLM Security cross site scripting0.040.01108CVE-2021-35043
1911897.57.57.5
 
 
 
Oracle Agile Product Lifecycle Management Integration Pack for E-Business Suite Installation Issues xml external entity reference0.030.10214CVE-2020-25649
1911888.38.3
 
8.3
 
 
Oracle Rapid Planning Middle Tier Remote Code Execution0.040.01537CVE-2021-2351
1911878.38.3
 
8.3
 
 
Oracle Product Lifecycle Analytics Installation Remote Code Execution0.060.01537CVE-2021-2351
1911868.38.3
 
8.3
 
 
Oracle Demantra Demand Management Security Remote Code Execution0.020.01537CVE-2021-2351
1911858.38.3
 
8.3
 
 
Oracle Agile PLM Security Remote Code Execution0.040.01537CVE-2021-2351
1911848.38.3
 
8.3
 
 
Oracle Agile Engineering Data Management Installation Remote Code Execution0.040.01537CVE-2021-2351

496 more entries are not shown

Do you need the next level of professionalism?

Upgrade your account now!