CVSSv3 04/06/2021

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCTICVE
1725103.53.5
 
 
 
Red Hat Enterprise Linux QEMU out-of-bounds read0.00CVE-2021-20295
1725097.65.59.8
 
 
Redmine Issues API permission0.00CVE-2021-30164
1725085.53.57.5
 
 
Redmine Project information disclosure0.00CVE-2021-30163
1725075.55.5
 
 
 
LG Mobile Devices ISMS Services access control0.07CVE-2021-30162
1725064.34.3
 
 
 
LG Mobile Device Lockscreen protection mechanism0.06CVE-2021-30161
1725053.92.65.3
 
 
MediaWiki Special:ResetTokens improper authentication0.00CVE-2021-30158
1725043.53.5
 
 
 
MediaWiki ChangesList Special Pages cross site scripting0.00CVE-2021-30157
1725034.83.56.1
 
 
MediaWiki Special:NewFiles cross site scripting0.00CVE-2021-30154
1725022.62.6
 
 
 
Sidekiq Live-Poll cross site scripting0.00CVE-2021-30151
1725014.83.56.1
 
 
Composr XML Script cross site scripting0.05CVE-2021-30150
1725007.65.59.8
 
 
Composr unrestricted upload0.07CVE-2021-30149
1724994.34.3
 
 
 
Dashboard Plugin main2.php access control0.00CVE-2021-30144
1724982.72.7
 
 
 
ASUS BMC Web Management Page path traversal0.00CVE-2021-28209
1724972.72.7
 
 
 
ASUS BMC Web Management Page path traversal0.06CVE-2021-28208
1724962.72.7
 
 
 
ASUS BMC Web Management Page path traversal0.06CVE-2021-28207
1724952.72.7
 
 
 
ASUS BMC Web Management Page path traversal0.06CVE-2021-28206
1724942.72.7
 
 
 
ASUS BMC Web Management Page path traversal0.06CVE-2021-28205
1724937.27.2
 
 
 
ASUS BMC Web Management Page os command injection0.06CVE-2021-28204
1724927.27.2
 
 
 
ASUS BMC Web Set Media Image os command injection0.00CVE-2021-28203
1724912.72.7
 
 
 
ASUS BMC Web Management Page buffer overflow0.06CVE-2021-28202
1724902.72.7
 
 
 
ASUS BMC Web Management Page buffer overflow0.06CVE-2021-28201
1724892.72.7
 
 
 
ASUS BMC CD Media Configuration buffer overflow0.06CVE-2021-28200
1724882.72.7
 
 
 
ASUS BMC Web Management Page buffer overflow0.07CVE-2021-28199
1724872.72.7
 
 
 
ASUS BMC Firmware Protocol Configuration buffer overflow0.07CVE-2021-28198
1724862.72.7
 
 
 
ASUS BMC Active Directory Configuration buffer overflow0.06CVE-2021-28197
1724852.72.7
 
 
 
ASUS BMC SSL Certificate buffer overflow0.07CVE-2021-28196
1724842.72.7
 
 
 
ASUS BMC Web Management Page buffer overflow0.07CVE-2021-28195
1724832.72.7
 
 
 
ASUS BMC Web Management Page buffer overflow0.06CVE-2021-28194
1724822.72.7
 
 
 
ASUS BMC SMTP Configuration buffer overflow0.07CVE-2021-28193
1724812.72.7
 
 
 
ASUS BMC Web Management Page buffer overflow0.00CVE-2021-28192
1724802.72.7
 
 
 
ASUS BMC Web Management Page buffer overflow0.06CVE-2021-28191
1724792.72.7
 
 
 
ASUS BMC Web Management Page buffer overflow0.00CVE-2021-28190
1724782.72.7
 
 
 
ASUS BMC Web Management Page buffer overflow0.07CVE-2021-28189
1724772.72.7
 
 
 
ASUS BMC Web Management Page buffer overflow0.00CVE-2021-28188
1724762.72.7
 
 
 
ASUS BMC SSL Certificate buffer overflow0.06CVE-2021-28187
1724752.72.7
 
 
 
ASUS BMC Web Management Page buffer overflow0.06CVE-2021-28186
1724742.72.7
 
 
 
ASUS BMC Web Management Page buffer overflow0.07CVE-2021-28185
1724732.72.7
 
 
 
ASUS BMC Active Directory Configuration buffer overflow0.06CVE-2021-28184
1724722.72.7
 
 
 
ASUS BMC Web Management Page buffer overflow0.00CVE-2021-28183
1724712.72.7
 
 
 
ASUS BMC Web Service Configuration buffer overflow0.00CVE-2021-28182
1724702.72.7
 
 
 
ASUS BMC Web Management Page buffer overflow0.00CVE-2021-28181
1724692.72.7
 
 
 
ASUS BMC Web Management Page buffer overflow0.06CVE-2021-28180
1724682.72.7
 
 
 
ASUS BMC Web Management Page buffer overflow0.06CVE-2021-28179
1724672.72.7
 
 
 
ASUS BMC UEFI Configuration buffer overflow0.07CVE-2021-28178
1724662.72.7
 
 
 
ASUS BMC Web Management Page buffer overflow0.06CVE-2021-28177
1724652.72.7
 
 
 
ASUS BMC Web Management Page buffer overflow0.13CVE-2021-28176
1724642.72.7
 
 
 
ASUS BMC Web Management Page buffer overflow0.07CVE-2021-28175
1724634.43.55.3
 
 
Redmine CSV Export information disclosure0.00CVE-2020-36308
1724624.83.56.1
 
 
Redmine Textile cross site scripting0.00CVE-2020-36307
1724614.83.56.1
 
 
Redmine cross site scripting0.09CVE-2020-36306

Interested in the pricing of exploits?

See the underground prices here!