CVSSv3 06/14/2022

CVSSv3 Base

≤10
≤20
≤31
≤411
≤54
≤629
≤718
≤820
≤925
≤101

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp

≤10
≤20
≤32
≤410
≤511
≤628
≤728
≤821
≤99
≤100

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB

≤10
≤20
≤31
≤413
≤516
≤618
≤718
≤818
≤923
≤102

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

CNA

≤10
≤20
≤31
≤40
≤50
≤68
≤77
≤834
≤98
≤104

A CVE Numbering Authority (CNA) is responsible for assigning new CVE entries. They might also include a CVSS score. These are usually not complete and might differ from VulDB scores.

Vendor

≤10
≤20
≤30
≤40
≤50
≤68
≤73
≤830
≤98
≤101

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDCNAVendResVulnerabilityCTICVE
2018676.65.7
 
7.5
 
 
Microsoft Windows SMB denial of service0.27CVE-2022-32230
2018668.18.8
 
7.87.8
 
Microsoft AV1 Video Extension Remote Code Execution0.03CVE-2022-30193
2018655.84.3
 
6.56.5
 
Microsoft Windows Autopilot Device Management/Enrollment Client information disclosure0.06CVE-2022-30189
2018648.18.8
 
7.87.8
 
Microsoft HEVC Video Extensions Remote Code Execution0.00CVE-2022-30188
2018635.14.3
 
5.55.5
 
Microsoft .NET/Visual Studio information disclosure0.03CVE-2022-30184
2018626.64.3
 
7.87.8
 
Microsoft RTOS GUIX information disclosure0.03CVE-2022-30180
2018618.18.8
 
7.87.8
 
Microsoft RTOS GUIX Remote Code Execution0.00CVE-2022-30179
2018608.18.8
 
7.87.8
 
Microsoft RTOS GUIX Remote Code Execution0.03CVE-2022-30178
2018597.87.8
 
7.87.8
 
Microsoft Azure RTOS GUIX Local Privilege Escalation0.06CVE-2022-30177
2018587.06.3
 
7.47.4
 
Microsoft Office Remote Code Execution0.30CVE-2022-30174
2018577.36.3
 
7.87.8
 
Microsoft Excel Remote Code Execution0.06CVE-2022-30173
2018565.14.3
 
5.55.5
 
Microsoft SharePoint Server/Office information disclosure0.03CVE-2022-30172
2018555.14.3
 
5.55.5
 
Microsoft SharePoint Server/Office information disclosure0.04CVE-2022-30171
2018547.36.3
 
7.87.8
 
Microsoft Microsoft Photos Remote Code Execution0.27CVE-2022-30168
2018538.18.8
 
7.87.8
 
Microsoft AV1 Video Extension Remote Code Execution0.00CVE-2022-30167
2018528.18.8
 
7.87.8
 
Microsoft Windows Local Security Authority Subsystem Service Privilege Escalation0.18CVE-2022-30166
2018518.88.8
 
8.88.8
 
Microsoft Windows Kerberos Privilege Escalation0.34CVE-2022-30165
2018508.99.9
 
8.48.4
 
Microsoft Windows Kerberos AppContainer Privilege Escalation0.03CVE-2022-30164
2018498.58.5
 
8.58.5
 
Microsoft Windows Hyper-V Privilege Escalation0.61CVE-2022-30163
2018485.14.3
 
5.55.5
 
Microsoft Windows Kernel information disclosure0.06CVE-2022-30162
2018478.88.8
 
8.88.8
 
Microsoft Windows LDAP Remote Code Execution0.06CVE-2022-30161
2018468.18.8
 
7.87.8
 
Microsoft Windows Advanced Local Procedure Call Privilege Escalation0.06CVE-2022-30160
2018455.14.3
 
5.55.5
 
Microsoft Office information disclosure0.03CVE-2022-30159
2018448.88.8
 
8.88.8
 
Microsoft SharePoint Server Privilege Escalation0.03CVE-2022-30158
2018438.88.8
 
8.88.8
 
Microsoft SharePoint Server Privilege Escalation0.03CVE-2022-30157
2018425.86.5
 
5.55.5
 
Microsoft Windows Kernel denial of service0.03CVE-2022-30155
2018415.25.0
 
5.35.3
 
Microsoft Windows File Server Shadow Copy Agent Service Privilege Escalation0.27CVE-2022-30154
2018408.88.8
 
8.88.8
 
Microsoft Windows LDAP Remote Code Execution0.12CVE-2022-30153
2018397.57.5
 
7.57.5
 
Microsoft Windows NAT denial of service0.36CVE-2022-30152
2018387.27.5
 
7.07.0
 
Microsoft Windows Ancillary Function Driver for WinSock Privilege Escalation0.03CVE-2022-30151
2018377.57.5
 
7.57.5
 
Microsoft Windows Defender Remote Credential Guard Privilege Escalation0.16CVE-2022-30150
2018367.57.5
 
7.57.5
 
Microsoft Windows LDAP Remote Code Execution0.00CVE-2022-30149
2018355.14.3
 
5.55.5
 
Microsoft Windows Desired State Configuration information disclosure0.12CVE-2022-30148
2018348.18.8
 
7.87.8
 
Microsoft Windows Installer Privilege Escalation0.12CVE-2022-30147
2018337.57.5
 
7.57.5
 
Microsoft Windows LDAP Remote Code Execution0.03CVE-2022-30146
2018327.57.5
 
7.57.5
 
Microsoft Windows Encrypting File System Privilege Escalation0.06CVE-2022-30145
2018317.57.5
 
7.57.5
 
Microsoft Windows LDAP Remote Code Execution0.07CVE-2022-30143
2018307.27.5
 
7.17.1
 
Microsoft Windows File History Privilege Escalation0.09CVE-2022-30142
2018298.18.1
 
8.18.1
 
Microsoft Windows LDAP Remote Code Execution0.15CVE-2022-30141
2018287.27.5
 
7.17.1
 
Microsoft Windows iSCSI Discovery Service Privilege Escalation0.09CVE-2022-30140
2018277.57.5
 
7.57.5
 
Microsoft Windows LDAP Privilege Escalation1.04CVE-2022-30139
2018266.97.2
 
6.76.7
 
Microsoft Azure Service Fabric Container Privilege Escalation0.04CVE-2022-30137
2018259.89.8
 
9.89.8
 
Microsoft Windows Network File System Remote Code Execution1.80CVE-2022-30136
2018248.18.8
 
7.87.8
 
Microsoft Windows Media Center Privilege Escalation0.06CVE-2022-30135
2018238.18.8
 
7.87.8
 
Microsoft Windows Container Manager Service Privilege Escalation0.00CVE-2022-30132
2018228.18.8
 
7.87.8
 
Microsoft Windows Container Isolation FS Filter Driver Privilege Escalation0.09CVE-2022-30131
2018218.18.8
 
7.87.8
 
Microsoft System Center Operations Manager Privilege Escalation0.18CVE-2022-29149
2018207.57.5
 
7.57.5
 
Microsoft SQL Server Privilege Escalation0.67CVE-2022-29143
2018198.18.8
 
7.87.8
 
Microsoft HEVC Video Extensions Remote Code Execution0.07CVE-2022-29119
2018188.18.8
 
7.87.8
 
Microsoft HEVC Video Extensions Remote Code Execution0.00CVE-2022-29111

59 more entries are not shown

Interested in the pricing of exploits?

See the underground prices here!