CVSSv3 02/03/2022

CVSSv3 Base

≤10
≤20
≤30
≤46
≤55
≤632
≤729
≤84
≤90
≤100

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp

≤10
≤20
≤30
≤46
≤55
≤652
≤712
≤81
≤90
≤100

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB

≤10
≤20
≤30
≤46
≤517
≤621
≤732
≤80
≤90
≤100

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

CNA

≤10
≤20
≤30
≤41
≤52
≤61
≤713
≤85
≤94
≤100

A CVE Numbering Authority (CNA) is responsible for assigning new CVE entries. They might also include a CVSS score. These are usually not complete and might differ from VulDB scores.

Vendor

≤10
≤20
≤30
≤40
≤50
≤61
≤71
≤81
≤90
≤100

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDCNAVendResVulnerabilityCTICVE
1925747.05.5
 
7.77.7
 
Microsoft Edge Privilege Escalation0.03CVE-2022-23263
1925736.36.3
 
6.36.3
 
Microsoft Edge Remote Code Execution0.03CVE-2022-23262
1925725.04.3
 
5.35.3
 
Microsoft Edge unknown vulnerability0.04CVE-2022-23261
1922046.96.3
 
7.6
 
 
Google Tensorflow SparseCountSparseOutput heap-based overflow0.05CVE-2022-21740
1922035.44.3
 
6.5
 
 
Google Tensorflow QuantizedMaxPool null pointer dereference0.05CVE-2022-21739
1922025.44.3
 
6.5
 
 
Google Tensorflow SparseCountSparseOutput integer overflow0.05CVE-2022-21738
1922015.44.3
 
6.5
 
 
Google Tensorflow FractionalMaxPool divide by zero0.04CVE-2022-21735
1922005.44.3
 
6.5
 
 
Google Tensorflow MapStage denial of service0.03CVE-2022-21734
1921995.44.3
 
6.5
 
 
Google Tensorflow UnravelIndex divide by zero0.06CVE-2022-21729
1921985.44.3
 
6.5
 
 
Google Tensorflow TFLite Model divide by zero0.03CVE-2022-21741
1921975.44.3
 
6.5
 
 
Google Tensorflow divide by zero0.03CVE-2022-21725
1921965.44.3
 
6.5
 
 
Google Tensorflow assertion0.05CVE-2022-23569
1921955.44.3
 
6.5
 
 
Google Tensorflow Bincount denial of service0.03CVE-2022-21737
1921943.53.5
 
 
 
 
Project Worlds Online-Movie-Ticket-Booking-System about.php sql injection0.04CVE-2021-44866
1921936.36.3
 
 
 
 
Google Chrome V8 out-of-bounds read0.00CVE-2022-0470
1921926.36.3
 
 
 
 
Google Chrome Cast use after free0.03CVE-2022-0469
1921916.36.3
 
 
 
 
Google Chrome Payments use after free0.05CVE-2022-0468
1921906.36.3
 
 
 
 
Google Chrome Pointer Lock Remote Code Execution0.05CVE-2022-0467
1921896.36.3
 
 
 
 
Google Chrome Extensions Platform Remote Code Execution0.00CVE-2022-0466
1921886.36.3
 
 
 
 
Google Chrome Extensions use after free0.03CVE-2022-0465
1921876.36.3
 
 
 
 
Google Chrome Accessibility use after free0.06CVE-2022-0464
1921866.36.3
 
 
 
 
Google Chrome Accessibility use after free0.03CVE-2022-0463
1921856.36.3
 
 
 
 
Google Chrome Scroll Remote Code Execution0.03CVE-2022-0462
1921846.36.3
 
 
 
 
Google Chrome COOP access control0.07CVE-2022-0461
1921836.36.3
 
 
 
 
Google Chrome Window Dialog use after free0.04CVE-2022-0460
1921826.36.3
 
 
 
 
Google Chrome Screen Capture use after free0.00CVE-2022-0459
1921816.36.3
 
 
 
 
Google Chrome Thumbnail Tab Strip use after free0.00CVE-2022-0458
1921806.36.3
 
 
 
 
Google Chrome V8 type confusion0.03CVE-2022-0457
1921796.36.3
 
 
 
 
Google Chrome Web Search use after free0.00CVE-2022-0456
1921786.36.3
 
 
 
 
Google Chrome Full Screen Remote Code Execution0.00CVE-2022-0455
1921776.36.3
 
 
 
 
Google Chrome ANGLE heap-based overflow0.04CVE-2022-0454
1921766.36.3
 
 
 
 
Google Chrome Reader Mode use after free0.03CVE-2022-0453
1921756.36.3
 
 
 
 
Google Chrome Safe Browsing use after free0.04CVE-2022-0452
1921745.44.3
 
6.5
 
 
Google Tensorflow AddManySparseToTensorsMap integer overflow0.04CVE-2022-23568
1921735.44.3
 
6.5
 
 
Google Tensorflow integer overflow0.04CVE-2022-23567
1921726.96.3
 
7.6
 
 
Google Tensorflow SparseTensorSliceDataset null pointer dereference0.04CVE-2022-21736
1921714.34.3
 
4.3
 
 
Google Tensorflow StringNGrams resource consumption0.00CVE-2022-21733
1921704.34.3
 
4.3
 
 
Google Tensorflow ThreadPoolHandle resource consumption0.03CVE-2022-21732
1921695.44.3
 
6.5
 
 
Google Tensorflow ConcatV2 memory corruption0.00CVE-2022-21731
1921687.26.3
 
8.1
 
 
Google Tensorflow FractionalAvgPoolGrad out-of-bounds read0.00CVE-2022-21730
1921676.96.3
 
7.6
 
 
Google Tensorflow Dequantize integer overflow0.06CVE-2022-21727
1921667.26.3
 
8.1
 
 
Google Tensorflow Dimensions Dequantize out-of-bounds read0.03CVE-2022-21726
1921657.26.3
 
8.1
 
 
Google TensorFlow Dimensions out-of-bounds read0.03CVE-2022-21728
1921643.53.5
 
 
 
 
Django Debug Template Tag cross site scripting0.07CVE-2022-22818
1921633.53.5
 
 
 
 
PrinterLogic Web Stack cross site scripting0.03CVE-2021-42639
1921625.55.5
 
 
 
 
PrinterLogic Web Stack URL server-side request forgery0.04CVE-2021-42637
1921615.55.5
 
 
 
 
Insyde InsydeH2O SMM memory corruption0.03CVE-2022-24030
1921605.55.5
 
 
 
 
Insyde InsydeH2O SMM Privilege Escalation0.00CVE-2021-43615
1921595.55.5
 
 
 
 
Insyde InsydeH2O SMM memory corruption0.04CVE-2021-42554
1921585.55.5
 
 
 
 
Insyde InsydeH2O SMM Privilege Escalation0.03CVE-2021-42113

26 more entries are not shown

Do you know our Splunk app?

Download it now for free!