CVSSv3 03/14/2022

CVSSv3 Base

≤10
≤20
≤320
≤430
≤521
≤636
≤772
≤837
≤91
≤100

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp

≤10
≤21
≤319
≤430
≤523
≤693
≤723
≤828
≤90
≤100

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB

≤10
≤20
≤320
≤432
≤526
≤630
≤774
≤834
≤91
≤100

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD

≤10
≤20
≤31
≤41
≤50
≤63
≤73
≤87
≤90
≤103

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

CNA

≤10
≤20
≤30
≤40
≤50
≤62
≤77
≤84
≤90
≤100

A CVE Numbering Authority (CNA) is responsible for assigning new CVE entries. They might also include a CVSS score. These are usually not complete and might differ from VulDB scores.

Vendor

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDCNAVendResVulnerabilityCTICVE
1951096.36.3
 
 
 
 
Apple GarageBand MIDI out-of-bounds read0.03CVE-2022-22664
1951086.36.3
 
 
 
 
Apple GarageBand MIDI initialization0.05CVE-2022-22657
1951076.36.3
 
 
 
 
Apple Logic Pro X MIDI out-of-bounds read0.03CVE-2022-22664
1951066.36.3
 
 
 
 
Apple Logic Pro X MIDI initialization0.00CVE-2022-22657
1951056.36.3
 
 
 
 
Apple Xcode otool out-of-bounds read0.00CVE-2022-22608
1951046.36.3
 
 
 
 
Apple Xcode otool out-of-bounds read0.04CVE-2022-22607
1951036.36.3
 
 
 
 
Apple Xcode otool out-of-bounds read0.04CVE-2022-22606
1951026.36.3
 
 
 
 
Apple Xcode otool out-of-bounds read0.05CVE-2022-22605
1951016.36.3
 
 
 
 
Apple Xcode otool out-of-bounds read0.07CVE-2022-22604
1951006.36.3
 
 
 
 
Apple Xcode otool out-of-bounds read0.00CVE-2022-22603
1950996.36.3
 
 
 
 
Apple Xcode otool out-of-bounds read0.04CVE-2022-22602
1950986.36.3
 
 
 
 
Apple Xcode otool out-of-bounds read0.03CVE-2022-22601
1950977.14.310.0
 
 
 
Apple Xcode iTMSTransporter deserialization0.03CVE-2021-44228
1950967.04.39.8
 
 
 
Apple Xcode iTMSTransporter dynamically-determined object attributes0.04CVE-2019-14379
1950955.45.4
 
 
 
 
Apple macOS xar symlink0.05CVE-2022-22582
1950943.33.3
 
 
 
 
Apple macOS Wi-Fi information disclosure0.03CVE-2022-22668
1950936.36.3
 
 
 
 
Apple macOS WebKit unknown vulnerability0.00CVE-2022-22637
1950926.36.3
 
 
 
 
Apple macOS WebKit buffer overflow0.04CVE-2022-22629
1950916.36.3
 
 
 
 
Apple macOS WebKit use after free0.04CVE-2022-22628
1950906.36.3
 
 
 
 
Apple macOS WebKit use after free0.05CVE-2022-22624
1950896.36.3
 
 
 
 
Apple macOS WebKit memory corruption0.00CVE-2022-22610
1950884.34.3
 
 
 
 
Apple macOS WebKit state issue0.06CVE-2022-22662
1950872.42.42.4
 
 
 
Apple macOS VoiceOver state issue0.00CVE-2021-30918
1950865.56.33.36.8
 
 
Apple macOS Vim heap-based overflow0.03CVE-2022-0158
1950856.26.35.56.8
 
 
Apple macOS Vim use after free0.00CVE-2022-0156
1950847.16.37.87.1
 
 
Apple macOS Vim out-of-bounds read0.04CVE-2022-0128
1950836.36.3
 
 
 
 
Apple macOS Vim null pointer dereference0.03CVE-2021-46059
1950825.86.35.55.5
 
 
Apple macOS Vim out-of-bounds read0.00CVE-2021-4193
1950816.56.37.85.5
 
 
Apple macOS Vim use after free0.04CVE-2021-4192
1950807.06.37.86.8
 
 
Apple macOS Vim use after free0.03CVE-2021-4187
1950797.06.37.86.8
 
 
Apple macOS Vim use after free0.00CVE-2021-4173
1950786.86.37.17.1
 
 
Apple macOS Vim out-of-bounds read0.03CVE-2021-4166
1950777.16.37.87.3
 
 
Apple macOS Vim heap-based overflow0.03CVE-2021-4136
1950762.42.4
 
 
 
 
Apple macOS UIKit information disclosure0.03CVE-2022-22621
1950756.36.3
 
 
 
 
Apple macOS System Preferences improper restriction of rendered ui layers0.00CVE-2022-22660
1950745.35.3
 
 
 
 
Apple macOS SoftwareUpdate state issue0.03CVE-2022-22639
1950738.18.1
 
 
 
 
Apple macOS SMB out-of-bounds write0.03CVE-2022-22651
1950722.42.4
 
 
 
 
Apple macOS Siri access control0.05CVE-2022-22599
1950715.35.3
 
 
 
 
Apple macOS Sandbox permission0.08CVE-2022-22600
1950706.36.3
 
 
 
 
Apple macOS Safari Downloads access control0.00CVE-2022-22616
1950695.35.3
 
 
 
 
Apple macOS QuickTime Player permissions0.00CVE-2022-22650
1950683.33.3
 
 
 
 
Apple macOS Preferences permission0.04CVE-2022-22609
1950675.35.3
 
 
 
 
Apple macOS PackageKit state issue0.03CVE-2022-22617
1950663.33.3
 
 
 
 
Apple macOS NSSpellChecker information disclosure0.05CVE-2022-22644
1950656.36.3
 
 
 
 
Apple macOS GarageBand MIDI out-of-bounds read0.03CVE-2022-22664
1950646.36.3
 
 
 
 
Apple macOS GarageBand MIDI memory corruption0.03CVE-2022-22657
1950633.33.3
 
 
 
 
Apple macOS LoginWindow information disclosure0.04CVE-2022-22656
1950625.95.9
 
 
 
 
Apple macOS Login Window improper authentication0.06CVE-2022-22647
1950616.46.36.5
 
 
 
Apple macOS libarchive memory corruption0.04CVE-2021-36976
1950607.87.8
 
 
 
 
Apple macOS Kernel memory corruption0.06CVE-2022-22640

167 more entries are not shown

Do you need the next level of professionalism?

Upgrade your account now!