CVSSv3 09/23/2022

CVSSv3 Base

≤10
≤21
≤33
≤418
≤515
≤651
≤724
≤84
≤94
≤100

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp

≤10
≤21
≤34
≤417
≤516
≤653
≤721
≤85
≤93
≤100

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB

≤10
≤21
≤36
≤419
≤523
≤644
≤714
≤811
≤92
≤100

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD

≤10
≤20
≤30
≤40
≤51
≤62
≤73
≤81
≤95
≤100

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

CNA

≤10
≤20
≤30
≤45
≤59
≤67
≤711
≤81
≤91
≤102

A CVE Numbering Authority (CNA) is responsible for assigning new CVE entries. They might also include a CVSS score. These are usually not complete and might differ from VulDB scores.

Vendor

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDCNAVendResVulnerabilityCTIEPSSCVE
2094388.88.8
 
 
 
 
UI Desktop access control1.960.00000CVE-2022-35257
2094376.46.4
 
 
 
 
U-Boot DFU heap-based overflow1.610.00000CVE-2022-2347
2094365.55.5
 
 
 
 
Tenda AC15/AC18 fromDhcpListClient stack-based overflow1.650.00000CVE-2022-40869
2094355.55.5
 
 
 
 
Tenda W20E formDelDhcpRule stack-based overflow1.880.00000CVE-2022-40868
2094345.55.5
 
 
 
 
Tenda W20E formIPMacBindDel stack-based overflow1.610.00000CVE-2022-40867
2094335.55.5
 
 
 
 
Tenda W20E formSetDebugCfg stack-based overflow1.230.00000CVE-2022-40866
2094325.55.5
 
 
 
 
Tenda AC15/AC18 setSchedWifi heap-based overflow1.230.00000CVE-2022-40865
2094315.55.5
 
 
 
 
Tenda AC15/AC18 PowerSaveSet setSmartPowerManagement stack-based overflow1.300.00000CVE-2022-40864
2094305.55.5
 
 
 
 
Tenda AC15/AC18 NatStaticSetting fromNatStaticSetting stack-based overflow1.420.00000CVE-2022-40862
2094295.55.5
 
 
 
 
Tenda AC18 formSetQosBand stack-based overflow1.420.00000CVE-2022-40861
2094285.55.5
 
 
 
 
Tenda AC15 SetNetControlList formSetQosBand stack-based overflow1.420.00000CVE-2022-40860
2094275.55.5
 
 
 
 
Tenda AC18 fast_setting_wifi_set stack-based overflow1.420.00000CVE-2022-40854
2094265.55.5
 
 
 
 
Tenda AC15 fast_setting_wifi_set stack-based overflow1.390.00000CVE-2022-40853
2094255.55.5
 
 
 
 
Tenda AC15 fromAddressNat stack-based overflow1.540.00000CVE-2022-40851
2094243.53.5
 
 
 
 
Hyperledger Fabric resource consumption1.380.00000CVE-2022-35253
2094233.73.7
 
 
 
 
cURL Cookie denial of service1.610.00000CVE-2022-35252
2094225.55.5
 
 
 
 
ZTE ZXvSTB access control1.650.00000CVE-2022-23144
2094215.55.5
 
 
 
 
HashiCorp Consul/Consul Enterprise SAN URI access control1.340.00000CVE-2022-40716
2094203.13.1
 
3.1
 
 
Mattermost GIF File resource consumption1.420.00000CVE-2022-3257
2094195.55.5
 
 
 
 
Ivanti Endpoint Manager Client LANDesk Management Agent Privilege Escalation1.650.00000CVE-2022-30121
2094188.57.3
 
9.8
 
 
Sophos Firewall User Portal/Webadmin code injection2.490.00000CVE-2022-3236
2094176.36.3
 
 
 
 
Facebook WhatsApp Video File integer underflow1.950.00000CVE-2022-27492
2094166.36.3
 
 
 
 
Tenda W20E POST Request formSetPortMapping stack-based overflow1.720.00000CVE-2022-40855
2094153.62.4
 
4.8
 
 
CPO Shortcodes Plugin cross site scripting1.680.00000CVE-2022-40672
2094144.34.3
 
4.3
 
 
WP Rating System Plugin cross-site request forgery1.730.00000CVE-2022-40671
2094133.83.5
 
4.1
 
 
GS Plugins GS Testimonial Slider Plugin cross site scripting1.650.00000CVE-2022-40213
2094123.62.4
 
4.8
 
 
PCA Predict Plugin cross site scripting1.530.00000CVE-2022-40195
2094114.34.3
 
 
 
 
Awesome Filterable Portfolio Plugin cross site scripting1.47-0.00000CVE-2022-40193
2094102.92.4
 
3.4
 
 
Max Foundry MaxButtons Plugin cross site scripting1.77-0.00000CVE-2022-38703
2094094.43.5
 
5.4
 
 
Notice Board Plugin cross site scripting1.72-0.00000CVE-2022-38460
2094084.34.3
 
 
 
 
Read More by Adam Plugin cross-site request forgery1.62-0.00000CVE-2022-38085
2094072.42.4
 
 
 
 
Add Shortcodes Actions and Filters Plugin cross site scripting1.65-0.00000CVE-2022-37342
2094063.83.5
 
4.1
 
 
Fullworks Meet My Team Plugin cross site scripting1.73-0.00000CVE-2022-37339
2094053.53.5
 
 
 
 
Blossom Recipe Maker Plugin cross site scripting1.66-0.00000CVE-2022-37338
2094044.43.5
 
5.4
 
 
WHA Crossword Plugin cross site scripting1.69-0.00000CVE-2022-37330
2094033.53.5
 
3.4
 
 
Themes Awesome History Timeline Plugin cross site scripting1.69-0.00000CVE-2022-37328
2094024.84.3
 
5.4
 
 
Topdigitaltrends Mega Addons for WPBakery Page Builder Plugin cross-site request forgery1.69-0.00000CVE-2022-36798
2094014.43.5
 
5.4
 
 
Awesome UG Torro Forms Plugin cross site scripting1.46-0.00000CVE-2022-36791
2094004.84.3
 
5.4
 
 
YDS Support Ticket System Plugin cross-site request forgery1.50-0.00000CVE-2022-36388
2093992.02.0
 
 
 
 
Firewall & Malware Scan Plugin Setting Options Page cross site scripting1.61-0.00000CVE-2022-3144
2093984.95.4
 
4.3
 
 
WP Rating System Plugin Vote race condition1.54-0.00000CVE-2022-40310
2093974.84.3
 
5.4
 
 
AlgolPlus Advanced Dynamic Pricing for WooCommerce Plugin cross-site request forgery1.30-0.00000CVE-2022-38095
2093965.44.7
 
6.2
 
 
Apasionados Export Post Info Plugin csv injection1.31-0.00000CVE-2022-38061
2093956.97.3
 
6.5
 
 
Awesome Filterable Portfolio Plugin Setting access control1.53-0.00000CVE-2022-35238
2093943.53.5
 
 
 
 
Biplob Adhikari Image Hover Effects Ultimate Plugin cross site scripting1.53-0.00000CVE-2022-2937
2093936.36.3
 
 
 
 
Online Tours & Travels Management System update_tax.php sql injection1.49-0.00000CVE-2022-40093
2093926.36.3
 
 
 
 
Online Tours & Travels Management System update_payment.php sql injection1.39-0.00000CVE-2022-40092
2093916.36.3
 
 
 
 
Online Tours & Travels Management System update_packages.php sql injection1.43-0.00000CVE-2022-40091
2093907.66.3
 
9.0
 
 
FFmpeg build_open_gop_key_points heap-based overflow1.50-0.00000CVE-2022-2566
2093893.53.5
 
 
 
 
Veritas Desktop Laptop Option Login Page login.jsp cross site scripting1.69-0.00885CVE-2022-41319

70 more entries are not shown

Do you need the next level of professionalism?

Upgrade your account now!