CVSSv3 04/27/2021info

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCTICVE
1741647.87.8
 
 
 
Lenovo PCManager uncontrolled search path0.06CVE-2021-3464
1741635.35.3
 
 
 
Lenovo PCManager Configuration default permission0.08CVE-2021-3451
1741625.55.5
 
 
 
Soyal 701Client client.exe permission0.08CVE-2021-28269
1741617.37.3
 
 
 
Symantec Security Analytics Web UI os command injection0.06CVE-2021-30642
1741604.44.4
 
 
 
IBM Spectrum Scale access control0.06CVE-2020-4981
1741593.53.5
 
 
 
IBM Spectrum Scale Web UI cross site scripting0.09CVE-2021-29666
1741583.53.5
 
 
 
IBM Content Navigator Web UI cross site scripting0.06CVE-2021-20550
1741573.53.5
 
 
 
IBM Content Navigator Web UI cross site scripting0.09CVE-2021-20549
1741563.53.5
 
 
 
IBM Content Navigator Web UI cross site scripting0.00CVE-2021-20448
1741554.54.5
 
 
 
IBM Spectrum Scale csv injection0.06CVE-2021-29667
1741545.55.5
 
 
 
SOYAL 701Server Binary permission0.00CVE-2021-28271
1741536.65.57.8
 
 
Delta Industrial Automation CNCSoft-B out-of-bounds write0.00CVE-2021-22664
1741523.53.5
 
 
 
Delta Industrial Automation CNCSoft-B out-of-bounds read0.06CVE-2021-22660
1741516.36.3
 
 
 
Delta Electronics Industrial Automation COMMGR stack-based overflow0.08CVE-2021-27480
1741505.55.5
 
 
 
Hot Pepper Gourmet App access control0.00CVE-2021-20715
1741493.53.5
 
 
 
Unisys Data Exchange Management Studio HTML Document cross site scripting0.08CVE-2020-35542
1741487.65.59.8
 
 
Unbound Compressed Name rdata_copy out-of-bounds write0.07CVE-2019-25042
1741476.55.57.5
 
 
Infinite Unbound Compressed Name dname_pkt_copy assertion0.00CVE-2019-25041
1741465.53.57.5
 
 
Infinite Unbound Compressed Name dname_pkt_copy infinite loop0.00CVE-2019-25040
1741457.65.59.8
 
 
Unbound respip.c integer overflow0.00CVE-2019-25039
1741447.65.59.8
 
 
Unbound dnscrypt.c integer overflow0.00CVE-2019-25038
1741435.53.57.5
 
 
Unbound Packet dname_pkt_copy denial of service0.09CVE-2019-25037
1741425.53.57.5
 
 
Unbound synth_cname denial of service0.00CVE-2019-25036
1741417.65.59.8
 
 
Unbound sldns_bget_token_par out-of-bounds write0.06CVE-2019-25035
1741407.65.59.8
 
 
Unbound sldns_str2wire_dname_buf_origin out-of-bounds write0.07CVE-2019-25034
1741397.65.59.8
 
 
Unbound ALIGN_UP Macro integer overflow0.00CVE-2019-25033
1741387.65.59.8
 
 
Unbound regional_alloc integer overflow0.00CVE-2019-25032
1741374.83.75.9
 
 
Unbound Configuration create_unbound_ad_servers.sh cleartext transmission0.00CVE-2019-25031
1741363.83.8
 
 
 
WP Fastest Cache pathname traversal0.00CVE-2021-20714
1741354.94.9
 
 
 
Apache Superset External URL redirect0.00CVE-2021-28125
1741346.36.3
 
 
 
Apache Ozone improper authorization0.00CVE-2020-17517
1741334.83.56.1
 
 
MintHCM File Upload cross site scripting0.20CVE-2021-25838
1741325.35.3
 
 
 
xorg-x11-server Xserver integer underflow0.06CVE-2021-3472
1741313.53.5
 
 
 
Shibboleth Service Provider Session Recovery null pointer dereference0.06CVE-2021-31826
1741305.55.5
 
 
 
Advantech WebAccess/SCADA Portal permission assignment0.12CVE-2021-22669
1741293.13.1
 
 
 
Foreman FreeIPA Module cleartext transmission0.06CVE-2021-3494
1741284.34.3
 
 
 
OrangeHRM Forgot Password information disclosure0.06CVE-2021-28399
1741273.13.1
 
 
 
MintHCM weak password0.00CVE-2021-25839
1741265.35.3
 
 
 
guix-daemon shadow access control0.06CVE-2021-27851
1741252.62.6
 
 
 
pgsync Schema Sync missing encryption0.07CVE-2021-31671
1741244.34.3
 
 
 
Sonatype Nexus Repository Manager UI Folder pathname traversal0.09CVE-2021-30635
1741237.37.3
 
 
 
Edimax Wireless Network Camera hard-coded credentials0.12CVE-2021-30165
1741225.55.5
 
 
 
Open Design Alliance Drawings SDK out-of-bounds write0.07CVE-2021-31784
1741213.33.3
 
 
 
Exiv2 Metadata out-of-bounds read0.12CVE-2021-29473
1741203.53.5
 
 
 
Jansson JSON Parser json_loads out-of-bounds read0.18CVE-2020-36325
1741195.35.3
 
 
 
postcss Package previous-map.js loadAnnotation incorrect regex0.18CVE-2021-23382
1741184.34.3
 
 
 
OpenVPN Control Channel Data authentication bypass0.18CVE-2020-15078
1741177.37.3
 
 
 
HedgeDoc PDF Export server-side request forgery0.12CVE-2021-29475
1741164.34.3
 
 
 
HedgeDoc findNote path traversal0.07CVE-2021-29474
1741155.55.5
 
 
 
LocalFilesEditor Extension show_default.php file inclusion0.25CVE-2021-31783

Do you need the next level of professionalism?

Upgrade your account now!