CVSSv3 07/20/2022

CVSSv3 Base

≤10
≤20
≤31
≤446
≤527
≤625
≤771
≤851
≤96
≤105

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp

≤10
≤20
≤31
≤449
≤525
≤659
≤738
≤849
≤96
≤105

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB

≤10
≤20
≤32
≤447
≤531
≤623
≤766
≤852
≤96
≤105

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

CNA

≤10
≤20
≤30
≤41
≤55
≤66
≤710
≤816
≤91
≤102

A CVE Numbering Authority (CNA) is responsible for assigning new CVE entries. They might also include a CVSS score. These are usually not complete and might differ from VulDB scores.

Vendor

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤71
≤80
≤90
≤100

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDCNAVendResVulnerabilityCTIEPSSCVE
2049166.36.3
 
 
 
 
Apple Safari WebRTC memory corruption0.710.00000CVE-2022-2294
2049156.36.3
 
 
 
 
Apple Safari WebKit out-of-bounds write0.390.00000CVE-2022-32792
2049144.34.3
 
 
 
 
Apple Safari Safari Extensions information disclosure0.500.00000CVE-2022-32784
2049133.33.3
 
 
 
 
Apple macOS Windows Server information disclosure0.290.00000CVE-2022-32848
2049129.89.8
 
 
 
 
Apple macOS Wi-Fi Remote Code Execution0.960.00000CVE-2022-32847
2049119.89.8
 
 
 
 
Apple macOS Wi-Fi Remote Code Execution0.680.00000CVE-2022-32837
2049106.36.3
 
 
 
 
Apple macOS WebRTC memory corruption0.750.00000CVE-2022-2294
2049096.36.3
 
 
 
 
Apple macOS WebKit out-of-bounds write0.570.00000CVE-2022-32792
2049086.36.3
 
 
 
 
Apple macOS WebKit improper restriction of rendered ui layers0.330.00000CVE-2022-32816
2049073.33.3
 
 
 
 
Apple macOS TCC access control0.290.00000CVE-2022-32834
2049064.34.3
 
 
 
 
Apple macOS subversion Privilege Escalation0.180.00954CVE-2022-29048
2049054.34.3
 
 
 
 
Apple macOS subversion Privilege Escalation0.260.00890CVE-2022-29046
2049044.34.3
 
 
 
 
Apple macOS subversion Privilege Escalation0.180.01859CVE-2022-24070
2049034.34.3
 
 
 
 
Apple macOS subversion Privilege Escalation0.180.01627CVE-2021-28544
2049027.87.8
 
 
 
 
Apple macOS Spotlight Local Privilege Escalation0.290.00000CVE-2022-32801
2049015.35.3
 
 
 
 
Apple macOS Spindump access control0.250.00000CVE-2022-32807
2049003.73.7
 
 
 
 
Apple macOS Software Update information disclosure0.360.00000CVE-2022-32857
2048993.33.3
 
 
 
 
Apple macOS SMB information disclosure0.220.00000CVE-2022-32818
2048983.73.7
 
 
 
 
Apple macOS SMB out-of-bounds0.180.00000CVE-2022-32799
2048975.35.3
 
 
 
 
Apple macOS SMB out-of-bounds write0.110.00000CVE-2022-32798
2048965.35.3
 
 
 
 
Apple macOS SMB out-of-bounds0.140.00000CVE-2022-32842
2048957.87.8
 
 
 
 
Apple macOS SMB memory corruption0.110.00000CVE-2022-32796
2048946.36.3
 
 
 
 
Apple macOS PS Normalizer out-of-bounds write0.290.00000CVE-2022-32843
2048933.33.3
 
 
 
 
Apple macOS PluginKit state issue0.250.00000CVE-2022-32838
2048925.35.3
 
 
 
 
Apple macOS PackageKit access control0.290.00000CVE-2022-32800
2048915.35.3
 
 
 
 
Apple macOS PackageKit access control0.330.00000CVE-2022-32786
2048907.87.8
 
 
 
 
Apple macOS Multi-Touch type confusion0.360.00000CVE-2022-32814
2048893.33.3
 
 
 
 
Apple macOS libxml2 initialization0.390.00000CVE-2022-32823
2048885.35.3
 
 
 
 
Apple macOS Liblouis Local Privilege Escalation0.290.01537CVE-2022-26981
2048877.87.8
 
 
 
 
Apple macOS Kernel Local Privilege Escalation0.540.00000CVE-2022-32829
2048863.33.3
 
 
 
 
Apple macOS Kernel out-of-bounds0.390.00000CVE-2022-32817
2048856.76.7
 
 
 
 
Apple macOS Kernel Local Privilege Escalation0.470.00000CVE-2022-32815
2048846.76.7
 
 
 
 
Apple macOS Kernel Local Privilege Escalation0.470.00000CVE-2022-32813
2048837.87.8
 
 
 
 
Apple macOS Intel Graphics Driver Local Privilege Escalation0.290.00000CVE-2022-32812
2048827.87.8
 
 
 
 
Apple macOS Intel Graphics Driver memory corruption0.400.00000CVE-2022-32811
2048814.34.3
 
 
 
 
Apple macOS ImageIO null pointer dereference0.730.00000CVE-2022-32785
2048804.34.3
 
 
 
 
Apple macOS ImageIO information disclosure0.360.00000CVE-2022-32841
2048796.36.3
 
 
 
 
Apple macOS ICU out-of-bounds write0.470.00000CVE-2022-32787
2048783.33.3
 
 
 
 
Apple macOS iCloud Photo Library information disclosure0.460.00000CVE-2022-32849
2048777.87.8
 
 
 
 
Apple macOS GPU Drivers memory corruption0.430.00000CVE-2022-32821
2048763.33.3
 
 
 
 
Apple macOS GPU Drivers out-of-bounds write0.400.00000CVE-2022-32793
2048757.87.8
 
 
 
 
Apple macOS File System Events state issue0.470.00000CVE-2022-32819
2048746.36.3
 
 
 
 
Apple macOS CoreText Remote Code Execution0.470.00000CVE-2022-32839
2048733.33.3
 
 
 
 
Apple macOS CoreMedia information disclosure0.330.00000CVE-2022-32828
2048723.33.3
 
 
 
 
Apple macOS Calendar information disclosure0.400.00000CVE-2022-32805
2048713.33.3
 
 
 
 
Apple macOS Automation access control0.250.00000CVE-2022-32789
2048703.33.3
 
 
 
 
Apple macOS Audio information disclosure0.510.00000CVE-2022-32825
2048697.87.8
 
 
 
 
Apple macOS Audio out-of-bounds write0.290.00000CVE-2022-32820
2048686.36.3
 
 
 
 
Apple macOS AppleScript out-of-bounds0.270.00000CVE-2022-32831
2048676.36.3
 
 
 
 
Apple macOS AppleScript out-of-bounds0.270.00000CVE-2022-32853

182 more entries are not shown

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!