CVSSv3 March 2021info

Timeline

The analysis of the timeline helps to identify the required approach and handling of single vulnerabilities and vulnerability collections. This overview makes it possible to see less important slices and more severe hotspots at a glance. Initiating immediate vulnerability response and prioritizing of issues is possible.

C3BM Index »

Our unique C3BM Index (CVSSv3 Base Meta Index) cumulates the CVSSv3 Meta Base Scores of all entries over time. Comparing this index to the amount of disclosed vulnerabilities helps to pinpoint the most important events.

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

PublishedBaseVDBNVDVendResVulnerabilityCTICVE
03/31/20216.36.3
 
 
 
Mozilla Firefox memory corruption0.12CVE-2021-23988
03/31/20216.36.3
 
 
 
Mozilla Firefox/Firefox ESR/Thunderbird memory corruption0.06CVE-2021-23987
03/31/20215.05.0
 
 
 
Mozilla Firefox Extension information disclosure1.33CVE-2021-23986
03/31/20213.13.1
 
 
 
Mozilla Firefox Devtools Remote Debugging information disclosure1.28CVE-2021-23985
03/31/20216.36.3
 
 
 
Mozilla Firefox/Firefox ESR/Thunderbird Popup Window clickjacking1.02CVE-2021-23984
03/31/20216.36.3
 
 
 
Mozilla Firefox CSS Rule memory corruption0.97CVE-2021-23983
03/31/20214.34.3
 
 
 
Mozilla Firefox/Firefox ESR/Thunderbird WebRTC Connection information disclosure0.92CVE-2021-23982
03/31/20216.36.3
 
 
 
Mozilla Firefox/Firefox ESR/Thunderbird WebGL memory corruption0.06CVE-2021-23981
03/31/20216.36.3
 
 
 
portprocesses killProcess Remote Privilege Escalation0.04CVE-2021-23348
03/31/20215.55.5
 
 
 
AccuSoft ImageGear SGI Format out-of-bounds write0.05CVE-2021-21782
03/31/20215.55.5
 
 
 
AccuSoft ImageGear SGI Format out-of-bounds write1.06CVE-2021-21776
03/31/20215.55.5
 
 
 
AccuSoft ImageGear TIFF Header out-of-bounds write1.30CVE-2021-21773
03/31/20216.36.3
 
 
 
Simple College Website Image Upload unrestricted upload0.06CVE-2020-28173
03/31/20217.37.3
 
 
 
Simple College Website sql injection1.34CVE-2020-28172
03/31/20213.53.5
 
 
 
Apache Tika MP3Parser infinite loop0.11CVE-2021-28657
03/31/20213.53.5
 
 
 
Academy Software Foundation OpenEXR B44 Uncompression integer overflow0.00CVE-2021-3476
03/31/20213.53.5
 
 
 
Academy Software Foundation OpenEXR File integer overflow0.00CVE-2021-3475
03/31/20213.53.5
 
 
 
Academy Software Foundation OpenEXR Input File FastHufDecoder buffer overflow0.10CVE-2021-3474
03/31/20213.53.5
 
 
 
Linux Kernel Netfilter Subsystem x_tables.c denial of service0.06CVE-2021-29650
03/31/20213.53.5
 
 
 
Linux Kernel User Mode Driver usermode_driver.c copy_process memory leak0.06CVE-2021-29649
03/31/20215.75.7
 
 
 
Linux Kernel BPF Subsystem syscall.c map_create denial of service1.31CVE-2021-29648
03/31/20213.53.5
 
 
 
Linux Kernel qrtr.c qrtr_recvmsg uninitialized pointer1.11CVE-2021-29647
03/31/20215.55.5
 
 
 
Linux Kernel node.c tipc_nl_retrieve_key buffer overflow0.06CVE-2021-29646
03/31/20213.53.5
 
 
 
GistPad Gist API information disclosure0.62CVE-2021-29642
03/31/20213.53.5
 
 
 
HPE Unified Data Management hard-coded key1.07CVE-2021-26579
03/31/20215.05.0
 
 
 
isolated-vm API dynamically-managed code resources0.15CVE-2021-21413
03/31/20216.36.3
 
 
 
@thi.ng egf os command injection0.06CVE-2021-21412
03/31/20216.36.3
 
 
 
FFmpeg aacdec_template.c sniff_channel_order buffer overflow0.36CVE-2020-24995
03/31/20215.55.5
 
 
 
mongo-express Advanced Syntax unknown vulnerability0.76CVE-2020-24391
03/31/20213.53.5
 
 
 
PrestaShop Grid Column Type DataColumn cross site scripting0.12CVE-2021-21398
03/31/20213.53.5
 
 
 
IBM Jazz Foundation Web UI cross site scripting0.92CVE-2021-20520
03/31/20213.53.5
 
 
 
IBM Jazz Foundation Web UI cross site scripting0.72CVE-2021-20518
03/31/20213.53.5
 
 
 
IBM Jazz Foundation Web UI cross site scripting0.56CVE-2021-20504
03/31/20213.53.5
 
 
 
IBM Jazz Foundation Web UI cross site scripting0.15CVE-2021-20503
03/31/20216.36.3
 
 
 
IBM Jazz Foundation xml external entity reference0.06CVE-2021-20502
03/31/20216.36.3
 
 
 
IBM Cloud Pak for Automation xml external entity reference0.06CVE-2021-20482
03/31/20213.53.5
 
 
 
IBM Jazz Foundation Web UI cross site scripting0.87CVE-2021-20447
03/31/20213.53.5
 
 
 
IBM Jazz Foundation Web UI cross site scripting1.02CVE-2021-20352
03/31/20213.13.1
 
 
 
IBM UrbanCode Deploy Manual Edit credentials storage0.17CVE-2020-4944
03/31/20214.34.3
 
 
 
IBM UrbanCode Deploy credentials storage0.17CVE-2020-4884
03/31/20216.36.3
 
 
 
IBM UrbanCode Deploy Plugin access control0.11CVE-2020-4848
03/30/20216.36.3
 
 
 
Foxit PhantomPDF U3D Object memory corruption0.21CVE-2021-27271
03/30/20216.36.3
 
 
 
Foxit PhantomPDF JPEG2000 Images out-of-bounds read0.06CVE-2021-27270
03/30/20216.36.3
 
 
 
Foxit PhantomPDF U3D Object out-of-bounds write0.21CVE-2021-27269
03/30/20216.36.3
 
 
 
Foxit PhantomPDF U3D Object use after free0.41CVE-2021-27268
03/30/20216.36.3
 
 
 
Foxit PhantomPDF U3D Object use after free0.06CVE-2021-27267
03/30/20214.34.3
 
 
 
Foxit PhantomPDF U3D Object out-of-bounds read0.31CVE-2021-27266
03/30/20214.34.3
 
 
 
Foxit PhantomPDF U3D Object out-of-bounds read0.21CVE-2021-27265
03/30/20214.34.3
 
 
 
Foxit PhantomPDF U3D Object out-of-bounds read0.31CVE-2021-27264
03/30/20214.34.3
 
 
 
Foxit PhantomPDF U3D Object out-of-bounds read0.36CVE-2021-27263

Do you know our Splunk app?

Download it now for free!