CVSSv3 07/26/2021

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDVendResVulnerabilityCTICVE
1796747.87.8
 
 
 
Apple iOS/iPadOS IOMobileFrameBuffer memory corruption3.87CVE-2021-30807
1796733.53.5
 
 
 
ZyXEL GS1900-8 LLDP Packet cross site scripting0.00CVE-2021-35030
1796723.53.5
 
 
 
MISP Galaxy Cluster Fork add.ctp cross site scripting0.04CVE-2021-37534
1796715.95.9
 
 
 
DM PD065 FingerTool authentication replay0.00CVE-2021-26824
1796704.34.3
 
 
 
OTRS Community Edition Email cross site scripting0.04CVE-2021-36092
1796696.36.3
 
 
 
url-parse URL redirect0.08CVE-2021-3664
1796683.53.5
 
 
 
isula-build Container Image Builder denial of service0.05CVE-2021-33629
1796674.34.3
 
 
 
OTRS Community Edition Calendar permission0.00CVE-2021-36091
1796663.53.5
 
 
 
OTRS Community Edition Bulk Action Screen permission0.04CVE-2021-21443
1796653.53.5
 
 
 
OTRS Time Accounting Project Crate Screen cross site scripting0.00CVE-2021-21442
1796642.72.7
 
 
 
OTRS Community Edition information disclosure0.00CVE-2021-21440
1796633.53.5
 
 
 
Elasticsearch Grok Parser infinite loop0.04CVE-2021-22144
1796625.65.6
 
 
 
3xLogic Infinias eIDC32 TLS certificate validation0.08CVE-2020-12681
1796613.13.1
 
 
 
Apache Directory Studio SASL Authentication missing encryption0.04CVE-2021-33900
1796606.86.8
 
 
 
IBM i2 iBase uncontrolled search path0.08CVE-2020-4623
1796595.55.5
 
 
 
IBM i2 Analysts Notebook Premium input validation0.04CVE-2021-29770
1796583.73.7
 
 
 
IBM i2 Analysts Notebook Premium Cookie missing secure attribute0.04CVE-2021-29769
1796575.35.3
 
 
 
IBM i2 Analysts Notebook Premium session fixiation0.11CVE-2021-20431
1796563.73.7
 
 
 
IBM QRadar SIEM inadequate encryption0.04CVE-2021-20337
1796554.34.3
 
 
 
IBM i2 Analyze information exposure0.08CVE-2021-29784
1796545.35.3
 
 
 
IBM i2 Analysts Notebook Premium information exposure0.04CVE-2021-29767
1796535.35.3
 
 
 
IBM i2 Analysts Notebook Premium information exposure0.00CVE-2021-29766
1796525.55.5
 
 
 
IBM Sterling Connect Direct Browser User Interface improper restriction of rendered ui layers0.11CVE-2021-20560
1796515.35.3
 
 
 
IBM i2 Analysts Notebook Premium information exposure0.04CVE-2021-20430
1796507.37.3
 
 
 
Microsoft Windows MS-EFSRPC EfsRpcOpenFileRaw PetitPotam server-side request forgery2.71
1796493.53.5
 
 
 
NCH WebDictate cross site scripting0.00CVE-2021-37470
1796483.53.5
 
 
 
NCH Axon PBX ipblacklist cross site scripting0.06CVE-2021-37462
1796473.53.5
 
 
 
NCH Axon PBX extensionsinstruction cross site scripting0.06CVE-2021-37461
1796463.53.5
 
 
 
NCH Axon PBX planprop cross site scripting0.00CVE-2021-37460
1796453.53.5
 
 
 
NCH Axon PBX cross site scripting0.04CVE-2021-37459
1796443.53.5
 
 
 
NCH Axon PBX cross site scripting0.04CVE-2021-37458
1796433.53.5
 
 
 
NCH Axon PBX cross site scripting0.04CVE-2021-37457
1796423.53.5
 
 
 
NCH Axon PBX cross site scripting0.00CVE-2021-37456
1796413.53.5
 
 
 
NCH Axon PBX cross site scripting0.00CVE-2021-37455
1796403.53.5
 
 
 
NCH Axon PBX cross site scripting0.00CVE-2021-37454
1796393.53.5
 
 
 
NCH Axon PBX cross site scripting0.04CVE-2021-37453
1796383.53.5
 
 
 
NCH IVM Attendant msglist cross site scripting0.04CVE-2021-37451
1796373.53.5
 
 
 
NCH IVM Attendant ogmprop cross site scripting0.00CVE-2021-37450
1796363.53.5
 
 
 
NCH IVM Attendant ogmlist cross site scripting0.00CVE-2021-37449
1796353.53.5
 
 
 
NCH IVM Attendant cross site scripting0.04CVE-2021-37448
1796343.53.5
 
 
 
NCH Quorum conferencebrowseuploadfile cross site scripting0.00CVE-2021-37467
1796333.53.5
 
 
 
NCH Quorum conference cross site scripting0.00CVE-2021-37466
1796323.53.5
 
 
 
NCH Quorum uploaddoc cross site scripting0.06CVE-2021-37465
1796313.53.5
 
 
 
NCH Quorum cross site scripting0.00CVE-2021-37464
1796303.53.5
 
 
 
NCH Quorum cross site scripting0.05CVE-2021-37463
1796293.53.5
 
 
 
NCH WebDictate logprop path traversal0.00CVE-2021-37469
1796284.64.6
 
 
 
NCH Quorum documentdelete path traversal0.04CVE-2021-37447
1796273.53.5
 
 
 
NCH Quorum documentprop path traversal0.00CVE-2021-37446
1796263.53.5
 
 
 
NCH Quorum logprop path traversal0.07CVE-2021-37445
1796254.64.6
 
 
 
NCH IVM Attendant logdeleteselected path traversal0.00CVE-2021-37443

Might our Artificial Intelligence support you?

Check our Alexa App!