CVSSv3 09/08/2021

CVSSv3 Base »

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp »

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB »

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD »

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

Vendor »

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research »

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDCNAVendResVulnerabilityCTICVE
1821855.55.5
 
 
 
 
Apple TV App File Privilege Escalation0.19CVE-2020-27940
1821844.34.3
 
 
 
 
sqlite-web cross-site request forgery0.19CVE-2021-23404
1821833.53.5
 
 
 
 
SmarterTools SmarterMail Email Content cross site scripting0.15CVE-2021-40377
1821825.65.6
 
 
 
 
Fortinet FortiSandbox User Session session expiration0.15CVE-2020-29012
1821818.88.8
 
 
 
 
Fortinet FortiWeb HTTP Request command injection0.05CVE-2021-36182
1821808.08.0
 
 
 
 
Fortinet FortiWeb CLI Command stack-based overflow0.05CVE-2021-36179
1821793.53.5
 
 
 
 
EyouCms cross site scripting0.05CVE-2021-39496
1821783.53.5
 
 
 
 
ClinicCases Session Token cross site scripting0.05CVE-2021-38707
1821774.34.3
 
 
 
 
ClinicCases Session Token cross site scripting0.00CVE-2021-38704
1821766.36.3
 
 
 
 
EyouCms Logout redirect0.05CVE-2021-39501
1821755.55.5
 
 
 
 
EyouCms path traversal0.24CVE-2021-39500
1821743.53.5
 
 
 
 
EyouCMS Parameter bind_email cross site scripting0.05CVE-2021-39499
1821735.55.5
 
 
 
 
Rob The Bank Address Verification BurnMe Privilege Escalation0.05CVE-2020-19769
1821725.55.5
 
 
 
 
ICOVO Address Verification selfdestructs Privilege Escalation0.10CVE-2020-19768
1821715.55.5
 
 
 
 
0xRACER destroycontract Privilege Escalation0.10CVE-2020-19767
1821705.55.5
 
 
 
 
Amfeix Contract Accounting noReentrance Privilege Escalation0.19CVE-2020-19765
1821693.53.5
 
 
 
 
ClinicCases cross-site request forgery0.15CVE-2021-38705
1821685.55.5
 
 
 
 
ownCloud Server Shareinfo Controller permission0.00CVE-2021-35949
1821675.55.5
 
 
 
 
ownCloud Federated Share permission0.08CVE-2021-35946
1821664.34.3
 
 
 
 
Atlassian JIRA Server/Data Center GIF Image Reader denial of service0.13CVE-2021-39116
1821654.34.3
 
 
 
 
Atlassian JIRA Server Search Endpoint search information disclosure0.23CVE-2021-39122
1821644.34.3
 
 
 
 
Atlassian JIRA Server/Data Center Private Project key information disclosure0.23CVE-2021-39121
1821634.34.3
 
 
 
 
PostgreSQL Query information disclosure0.00
1821624.34.3
 
 
 
 
PostgreSQL UPDATE information disclosure0.19CVE-2021-32029
1821614.34.3
 
 
 
 
PostgreSQL CONFLICT information disclosure0.17CVE-2021-32028
1821603.53.5
 
 
 
 
phpwcms image_zoom.php cross site scripting0.39CVE-2020-19855
1821596.36.3
 
 
 
 
BlueCMS ad_js.php sql injection0.05CVE-2020-19853
1821583.53.5
 
 
 
 
Nextcloud Circles cross site scripting0.10CVE-2021-32782
1821573.53.5
 
 
 
 
gifsicle find_color_or_error null pointer dereference0.04CVE-2020-19752
1821564.14.1
 
 
 
 
Tuxera ntfs-3g NTFS Image ntfs_get_attribute_value heap-based overflow0.05CVE-2021-39263
1821552.12.1
 
 
 
 
Tuxera ntfs-3g NTFS Image ntfs_decompress out-of-bounds read0.09CVE-2021-39262
1821544.14.1
 
 
 
 
Tuxera ntfs-3g NTFS Image ntfs_compressed_pwrite heap-based overflow0.05CVE-2021-39261
1821532.12.1
 
 
 
 
Tuxera ntfs-3g NTFS Image ntfs_inode_sync_standard_information out-of-bounds read0.09CVE-2021-39260
1821522.12.1
 
 
 
 
Tuxera ntfs-3g NTFS Image ntfs_inode_lookup_by_name out-of-bounds read0.09CVE-2021-39259
1821512.12.1
 
 
 
 
Tuxera ntfs-3g NTFS Image ntfs_external_attr_find out-of-bounds read0.10CVE-2021-39258
1821502.12.1
 
 
 
 
Tuxera ntfs-3g NTFS Image ntfs_attr_pwrite infinite loop0.09CVE-2021-39257
1821494.14.1
 
 
 
 
Tuxera ntfs-3g NTFS Image ntfs_inode_lookup_by_name heap-based overflow0.05CVE-2021-39256
1821482.12.1
 
 
 
 
Tuxera ntfs-3g NTFS Image ntfs_attr_find_in_attrdef out-of-bounds read0.04CVE-2021-39255
1821474.14.1
 
 
 
 
Tuxera ntfs-3g NTFS Image ntfs_attr_record_resize integer overflow0.04CVE-2021-39254
1821462.12.1
 
 
 
 
Tuxera ntfs-3g NTFS Image ntfs_runlists_merge_i out-of-bounds read0.08CVE-2021-39253
1821452.12.1
 
 
 
 
Tuxera ntfs-3g NTFS Image ntfs_ie_lookup out-of-bounds read0.33CVE-2021-39252
1821441.91.9
 
 
 
 
Tuxera ntfs-3g NTFS Image ntfs_extent_inode_open null pointer dereference0.04CVE-2021-39251
1821436.36.3
 
 
 
 
Micro Focus Network Automation improper authentication0.00CVE-2021-38123
1821424.14.1
 
 
 
 
Tuxera ntfs-3g NTFS Attribute ntfs_attr_pread_i heap-based overflow0.14CVE-2021-33287
1821416.36.3
 
 
 
 
Inoguard ExECM CoreB2B httpDownload input validation0.00CVE-2020-7865
1821406.36.3
 
 
 
 
Dext5 Upload DoOpenFile input validation0.04CVE-2020-7832
1821395.05.0
 
 
 
 
EyouCms URL saveRemote server-side request forgery0.04CVE-2021-39497
1821384.34.3
 
 
 
 
remark-html Markdown cross site scripting0.04CVE-2021-39199
1821374.34.3
 
 
 
 
Nextcloud Deck Circle Membership authorization0.00CVE-2021-37631
1821365.35.3
 
 
 
 
Nextcloud Text information exposure0.00CVE-2021-32766

Do you need the next level of professionalism?

Upgrade your account now!