CVSSv3 07/12/2022

CVSSv3 Base

≤10
≤20
≤36
≤453
≤528
≤633
≤757
≤827
≤919
≤101

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp

≤10
≤20
≤39
≤450
≤530
≤643
≤768
≤822
≤92
≤100

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB

≤10
≤21
≤322
≤441
≤524
≤641
≤733
≤839
≤922
≤101

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

CNA

≤10
≤20
≤31
≤412
≤57
≤68
≤77
≤83
≤95
≤101

A CVE Numbering Authority (CNA) is responsible for assigning new CVE entries. They might also include a CVSS score. These are usually not complete and might differ from VulDB scores.

Vendor

≤10
≤20
≤30
≤40
≤517
≤63
≤727
≤827
≤97
≤100

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDCNAVendResVulnerabilityCTIEPSSCVE
2037946.56.5
 
 
6.5
 
Microsoft Windows Security Account Manager denial of service0.070.00885CVE-2022-30208
2037936.45.3
 
 
7.5
 
Microsoft Windows Internet Information Services Cachuri Module denial of service0.460.02251CVE-2022-22025
2037397.27.2
 
 
7.2
 
Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation0.000.01156CVE-2022-33678
2037387.27.2
 
 
7.2
 
Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation0.040.00885CVE-2022-33677
2037377.27.2
 
 
7.2
 
Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation0.030.01156CVE-2022-33676
2037368.38.8
 
 
7.8
 
Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation0.090.00885CVE-2022-33675
2037358.68.8
 
 
8.3
 
Microsoft Azure Site Recovery VMWare to Azure Remote Code Execution0.070.00885CVE-2022-33674
2037346.97.2
 
 
6.5
 
Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation0.070.00885CVE-2022-33673
2037336.97.2
 
 
6.5
 
Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation0.040.00885CVE-2022-33672
2037323.82.7
 
 
4.9
 
Microsoft Azure Site Recovery VMWare to Azure information disclosure0.070.00885CVE-2022-33671
2037313.82.7
 
 
4.9
 
Microsoft Azure Site Recovery VMWare to Azure information disclosure0.070.00885CVE-2022-33669
2037303.82.7
 
 
4.9
 
Microsoft Azure Site Recovery VMWare to Azure information disclosure0.000.00885CVE-2022-33668
2037296.97.2
 
 
6.5
 
Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation0.000.00885CVE-2022-33667
2037286.97.2
 
 
6.5
 
Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation0.000.00885CVE-2022-33666
2037276.97.2
 
 
6.5
 
Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation0.000.00885CVE-2022-33665
2037263.82.7
 
 
4.9
 
Microsoft Azure Site Recovery VMWare to Azure information disclosure0.050.00885CVE-2022-33664
2037256.97.2
 
 
6.5
 
Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation0.000.00885CVE-2022-33663
2037246.97.2
 
 
6.5
 
Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation0.050.00885CVE-2022-33662
2037236.97.2
 
 
6.5
 
Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation0.000.00885CVE-2022-33661
2037223.82.7
 
 
4.9
 
Microsoft Azure Site Recovery VMWare to Azure information disclosure0.000.00885CVE-2022-33660
2037213.82.7
 
 
4.9
 
Microsoft Azure Site Recovery VMWare to Azure information disclosure0.040.00885CVE-2022-33659
2037203.32.2
 
 
4.4
 
Microsoft Azure Site Recovery VMWare to Azure information disclosure0.060.00885CVE-2022-33658
2037196.97.2
 
 
6.5
 
Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation0.000.00885CVE-2022-33657
2037186.97.2
 
 
6.5
 
Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation0.040.00885CVE-2022-33656
2037176.97.2
 
 
6.5
 
Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation0.000.00885CVE-2022-33655
2037163.82.7
 
 
4.9
 
Microsoft Azure Site Recovery VMWare to Azure information disclosure0.050.00885CVE-2022-33654
2037153.82.7
 
 
4.9
 
Microsoft Azure Site Recovery VMWare to Azure information disclosure0.000.00885CVE-2022-33653
2037143.32.2
 
 
4.4
 
Microsoft Azure Site Recovery VMWare to Azure information disclosure0.000.00885CVE-2022-33652
2037133.82.7
 
 
4.9
 
Microsoft Azure Site Recovery VMWare to Azure information disclosure0.070.00885CVE-2022-33651
2037123.82.7
 
 
4.9
 
Microsoft Azure Site Recovery VMWare to Azure information disclosure0.040.00885CVE-2022-33650
2037117.37.5
 
 
7.0
 
Microsoft Windows Xbox Live Save Service Privilege Escalation0.030.00885CVE-2022-33644
2037106.97.2
 
 
6.5
 
Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation0.000.00885CVE-2022-33643
2037093.82.7
 
 
4.9
 
Microsoft Azure Site Recovery VMWare to Azure information disclosure0.000.00885CVE-2022-33642
2037086.97.2
 
 
6.5
 
Microsoft Azure Site Recovery VMWare to Azure Privilege Escalation0.000.00885CVE-2022-33641
2037076.46.3
 
 
6.5
 
Microsoft Defender for Endpoint Privilege Escalation0.050.00885CVE-2022-33637
2037067.27.2
 
 
7.2
 
Microsoft Lync Server/Skype for Business Server Privilege Escalation0.230.01156CVE-2022-33633
2037055.56.3
 
 
4.7
 
Microsoft Office Remote Code Execution0.500.00885CVE-2022-33632
2037048.08.8
 
 
7.1
 
Microsoft Windows Print Spooler Privilege Escalation0.100.00885CVE-2022-30226
2037038.08.8
 
 
7.1
 
Microsoft Windows Media Player Network Sharing Service Privilege Escalation0.170.00885CVE-2022-30225
2037027.37.5
 
 
7.0
 
Microsoft Windows Server 2012 R2 (Server Core installation) unknown vulnerability0.700.00885CVE-2022-30224
2037015.04.3
 
 
5.7
 
Microsoft Windows Hyper-V information disclosure0.000.00885CVE-2022-30223
2037008.68.8
 
 
8.4
 
Microsoft Windows Shell Privilege Escalation0.900.01103CVE-2022-30222
2036998.88.8
 
 
8.8
 
Microsoft Windows Graphics Remote Code Execution0.590.01156CVE-2022-30221
2036988.38.8
 
 
7.8
 
Microsoft Windows Common Log File System Driver Privilege Escalation0.070.00885CVE-2022-30220
2036978.88.8
 
 
8.8
 
Microsoft Windows Server Service Privilege Escalation0.900.00885CVE-2022-30216
2036967.57.5
 
 
7.5
 
Microsoft Windows Active Directory Federation Services Privilege Escalation0.760.00885CVE-2022-30215
2036956.66.6
 
 
6.6
 
Microsoft Windows DNS Server Privilege Escalation0.370.01156CVE-2022-30214
2036944.94.3
 
 
5.5
 
Microsoft Windows GDI+ information disclosure0.050.00885CVE-2022-30213
2036933.93.1
 
 
4.7
 
Microsoft Windows Connected Devices Platform Service information disclosure0.050.00885CVE-2022-30212
2036927.57.5
 
 
7.5
 
Microsoft Windows L2TP Privilege Escalation0.100.01156CVE-2022-30211

174 more entries are not shown

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!