CVSSv3 06/28/2021

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCTICVE
1776916.36.3
 
 
 
NavigateCMS Input Category navigate.php sql injection0.71CVE-2020-23711
1776906.36.3
 
 
 
Chamilo model.ajax.php sql injection0.43CVE-2021-34187
1776894.34.3
 
 
 
IBM Business Automation Workflow information disclosure0.38CVE-2021-29751
1776886.36.3
 
 
 
IBM Security Identity Manager heap-based overflow0.60CVE-2021-20494
1776873.53.5
 
 
 
IBM Business Automation Workflow Web UI cross site scripting0.16CVE-2021-29775
1776865.05.0
 
 
 
IBM Security Identity Manager Adapter ldap injection0.22CVE-2021-20574
1776854.34.3
 
 
 
IBM Security Identity Manager heap-based overflow0.11CVE-2021-20573
1776846.36.3
 
 
 
IBM Security Identity Manager buffer overflow0.05CVE-2021-20572
1776834.34.3
 
 
 
IBM Guardium Data Encryption information exposure0.16CVE-2021-20413
1776822.72.7
 
 
 
IBM AIX/VIOS lpd denial of service0.11CVE-2021-29693
1776813.13.1
 
 
 
Adobe After Effects out-of-bounds read0.11CVE-2021-28587
1776805.35.3
 
 
 
Adobe Premiere Elements temp file0.00CVE-2021-28623
1776796.36.3
 
 
 
Adobe Photoshop Elements temp file0.28CVE-2021-28597
1776784.34.3
 
 
 
Adobe Connec access control0.17CVE-2021-28579
1776775.05.0
 
 
 
Adobe After Effects uncontrolled search path0.00CVE-2021-28570
1776766.36.3
 
 
 
Adobe RoboHelp Server HTTP POST Request path traversal0.06CVE-2021-28588
1776754.34.3
 
 
 
Adobe Animate out-of-bounds read0.06CVE-2021-28576
1776744.34.3
 
 
 
Adobe Animate out-of-bounds read0.17CVE-2021-28575
1776734.34.3
 
 
 
Adobe Animate out-of-bounds read0.00CVE-2021-28574
1776724.34.3
 
 
 
Adobe Animate out-of-bounds read0.33CVE-2021-28573
1776716.36.3
 
 
 
Adobe Illustrator path traversal0.18CVE-2021-21102
1776706.36.3
 
 
 
Adobe Illustrator out-of-bounds write0.11CVE-2021-21101
1776696.36.3
 
 
 
Adobe InDesign out-of-bounds write0.11CVE-2021-21099
1776686.36.3
 
 
 
Adobe InDesign out-of-bounds write0.16CVE-2021-21098
1776676.36.3
 
 
 
Adobe InCopy path traversal0.60CVE-2021-21090
1776664.54.5
 
 
 
Dovecot OAuth2 Authentication path traversal0.23CVE-2021-29157
1776655.55.5
 
 
 
Dovecot Submission command injection0.34CVE-2021-33515
1776643.13.1
 
 
 
SICK Visionary-S CX Internal SSH Interface inadequate encryption0.36CVE-2021-32496
1776637.37.3
 
 
 
Siemens SINAMICS SL150/SINAMICS SM150/SINAMICS SM150i Telnet Service missing authentication0.17CVE-2021-31337
1776624.34.3
 
 
 
Dovecot Sieve Engine resource consumption0.39CVE-2020-28200
1776615.55.5
 
 
 
Infoblox NIOS XML Upload xml external entity reference0.11CVE-2020-15303
1776605.55.5
 
 
 
Narou Novel code injection0.34CVE-2021-35514
1776594.74.7
 
 
 
Tenable Nessus Agent access control0.16CVE-2021-20100
1776584.74.7
 
 
 
Tenable Nessus Agent access control0.60CVE-2021-20099
1776577.37.3
 
 
 
wincred getCredential Remote Code Execution0.45CVE-2021-23399
1776563.53.5
 
 
 
Fudousan Plugin cross site scripting0.28CVE-2021-20749
1776555.55.5
 
 
 
Inkdrop Snippet os command injection0.16CVE-2021-20745
1776543.53.5
 
 
 
Mermaid Antiscript cross site scripting0.06CVE-2021-35513
1776533.53.5
 
 
 
EC-CUBE cross site scripting0.22CVE-2021-20751
1776523.53.5
 
 
 
EC-CUBE cross site scripting0.06CVE-2021-20750
1776518.88.8
 
 
 
Hitachi Virtual File Platform os command injection0.18CVE-2021-20740
1776503.53.5
 
 
 
Popular Posts Plugin cross site scripting0.16CVE-2021-20746

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!