CVSSv3 10/15/2022

CVSSv3 Base

≤10
≤20
≤30
≤416
≤51
≤622
≤71
≤81
≤90
≤100

The Common Vulnerability Scoring System (CVSS) is an industry standard to define the characteristics and impacts of security vulnerabilities. The base score represents the intrinsic aspects that are constant over time and across user environments. Our unique meta score merges all available scores from different sources to aggregate to the most reliable result.

CVSSv3 Temp

≤10
≤20
≤30
≤416
≤51
≤622
≤71
≤81
≤90
≤100

The Common Vulnerability Scoring System (CVSS) uses temp scores to reflect the characteristics of a vulnerability that may change over time but not across user environments. This includes reporting confidence, exploitability and remediation levels. We do also provide our unique meta score for temp scores, even though other sources rarely publish them.

VulDB

≤10
≤20
≤31
≤415
≤51
≤622
≤71
≤81
≤90
≤100

The moderation team is always defining the base vector and base score for an entry. These and all other available scores are used to generate the meta score.

NVD

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

The National Vulnerability Database (NVD) is also defining CVSS vectors and scores. These are usually not complete and might differ from VulDB scores.

CNA

≤10
≤20
≤30
≤40
≤50
≤61
≤70
≤80
≤90
≤100

A CVE Numbering Authority (CNA) is responsible for assigning new CVE entries. They might also include a CVSS score. These are usually not complete and might differ from VulDB scores.

Vendor

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

Some vendors are willing to publish their own CVSS vectors and scores for vulnerabilities in their products. The coverage varies from vendor to vendor.

Research

≤10
≤20
≤30
≤40
≤50
≤60
≤70
≤80
≤90
≤100

There are sometimes also security researcher which provide their own CVSS vectors and scores for vulnerabilities they have found and published.

IDBaseVDBNVDCNAVendResVulnerabilityCTIEPSSCVE
2109683.53.5
 
 
 
 
NSS tstclnt memory corruption1.000.00000CVE-2022-3479
2109673.53.5
 
 
 
 
Huawei HarmonyOS HW_KEYMASTER Module out-of-bounds1.000.00000CVE-2021-46840
2109663.53.5
 
 
 
 
Huawei HarmonyOS HW_KEYMASTER Module out-of-bounds1.090.00000CVE-2021-46839
2109655.55.5
 
 
 
 
Unisoc S8000 JPG Driver out-of-bounds write1.090.00000CVE-2022-2984
2109646.36.3
 
 
 
 
Online Diagnostic Lab Management System sql injection1.030.00000CVE-2022-42064
2109633.53.5
 
 
 
 
Online Birth Certificate Management System cross site scripting1.000.00000CVE-2022-42071
2109624.34.3
 
 
 
 
Online Birth Certificate Management System cross-site request forgery0.970.00000CVE-2022-42070
2109613.53.5
 
 
 
 
Online Birth Certificate Management System cross site scripting1.030.00000CVE-2022-42069
2109603.92.4
 
5.5
 
 
barrykooij related-posts-for-wp cross site scripting1.050.00000CVE-2022-3506
2109593.33.3
 
 
 
 
Unisoc S8000 Music Service authorization1.110.00000CVE-2022-39115
2109583.33.3
 
 
 
 
Unisoc S8000 Music Service authorization1.080.00000CVE-2022-39114
2109573.33.3
 
 
 
 
Unisoc S8000 Music Service authorization1.050.00000CVE-2022-39113
2109563.33.3
 
 
 
 
Unisoc S8000 Music Service authorization1.110.00000CVE-2022-39112
2109553.33.3
 
 
 
 
Unisoc S8000 Gallery Service authorization1.110.00000CVE-2022-39103
2109543.33.3
 
 
 
 
Unisoc S8000 Messaging Service resource consumption1.080.00000CVE-2022-38687
2109533.33.3
 
 
 
 
Unisoc S8000 Music Service resource consumption1.170.00000CVE-2022-38679
2109523.33.3
 
 
 
 
Unisoc S8000 Cell Service denial of service1.050.00000CVE-2022-38677
2109513.53.5
 
 
 
 
Red Hat 389-ds-base Content Synchronization Plugin null pointer dereference1.110.00000CVE-2022-2850
2109505.55.5
 
 
 
 
UCMS Template Management Module file inclusion1.140.00000CVE-2022-42234
2109495.35.3
 
 
 
 
Unisoc S8000 Music Service permission1.140.00000CVE-2022-39111
2109485.35.3
 
 
 
 
Unisoc S8000 Music Service authorization0.910.00000CVE-2022-39110
2109475.35.3
 
 
 
 
Unisoc S8000 Music Service authorization1.020.00000CVE-2022-39109
2109465.35.3
 
 
 
 
Unisoc S8000 Music Service permission1.080.00000CVE-2022-39108
2109455.35.3
 
 
 
 
Unisoc S8000 Soundrecorder Service permission1.020.00000CVE-2022-39107
2109445.35.3
 
 
 
 
Unisoc S8000 Messaging Service authorization1.000.00000CVE-2022-39080
2109435.35.3
 
 
 
 
Unisoc S8000 Messaging Service authorization0.910.00000CVE-2022-38698
2109425.35.3
 
 
 
 
Unisoc S8000 Messaging Service permission0.970.00000CVE-2022-38697
2109415.35.3
 
 
 
 
Unisoc S8000 Soundrecorder Service authorization0.940.00000CVE-2022-38670
2109405.35.3
 
 
 
 
Unisoc S8000 Soundrecorder Service permission0.940.00000CVE-2022-38669
2109397.37.3
 
 
 
 
Unisoc S8000 Music Service authorization1.000.00000CVE-2022-2985
2109383.53.5
 
 
 
 
Jasper cmdopts_parse memory leak0.880.00000CVE-2022-2963
2109375.55.5
 
 
 
 
Online Birth Certificate Management System resource injection0.880.00000CVE-2022-42067
2109365.55.5
 
 
 
 
Huawei HarmonyOS Fingerprint Trusted Application heap-based overflow0.910.00000CVE-2022-41603
2109355.55.5
 
 
 
 
Huawei HarmonyOS Fingerprint Trusted Application heap-based overflow0.860.00000CVE-2022-41602
2109345.55.5
 
 
 
 
Huawei HarmonyOS Fingerprint Trusted Application heap-based overflow0.800.00000CVE-2022-41601
2109335.55.5
 
 
 
 
Huawei HarmonyOS Fingerprint Trusted Application heap-based overflow0.860.00000CVE-2022-41600
2109325.55.5
 
 
 
 
Huawei HarmonyOS Fingerprint Trusted Application heap-based overflow0.860.00000CVE-2022-41598
2109315.55.5
 
 
 
 
Huawei HarmonyOS Fingerprint Trusted Application heap-based overflow0.860.00000CVE-2022-41597
2109305.55.5
 
 
 
 
Huawei HarmonyOS Fingerprint Trusted Application heap-based overflow0.860.00000CVE-2022-41595
2109295.55.5
 
 
 
 
Huawei HarmonyOS Fingerprint Trusted Application heap-based overflow0.890.00000CVE-2022-41594
2109285.55.5
 
 
 
 
Huawei HarmonyOS Fingerprint Trusted Application heap-based overflow0.860.00000CVE-2022-41593

Do you need the next level of professionalism?

Upgrade your account now!