CVSS V3 Calculator - NVD

1. Vulnerability Metrics

CVSS Version 3.0 CVSS Version 3.1

Common Vulnerability Scoring System Calculator

This page shows the components of a CVSS assessment and allows you to refine the resulting CVSS score with additional or different metric values. Please read the CVSS standards guide to fully understand how to assess vulnerabilities using CVSS and to interpret the resulting scores. The scores are computed in sequence such that the Base Score is used to calculate the Temporal Score and the Temporal Score is used to calculate the Environmental Score.

Alert

Please fill in all base metrics in order to generate a score!

CVSS Base Score: NA Impact Subscore: NA Exploitability Subscore: NA CVSS Temporal Score: NA CVSS Environmental Score: NA Modified Impact Subscore: NA Overall CVSS Score: NA

Show Equations

Show Equations

CVSS Vector

NA

Base Score Metrics

Exploitability Metrics Attack Vector (AV)* Network (AV:N) Adjacent Network (AV:A) Local (AV:L) Physical (AV:P) Attack Complexity (AC)* Low (AC:L) High (AC:H) Privileges Required (PR)* None (PR:N) Low (PR:L) High (PR:H) User Interaction (UI)* None (UI:N) Required (UI:R) Scope (S)* Unchanged (S:U) Changed (S:C) Impact Metrics Confidentiality Impact (C)* None (C:N) Low (C:L) High (C:H) Integrity Impact (I)* None (I:N) Low (I:L) High (I:H) Availability Impact (A)* None (A:N) Low (A:L) High (A:H)

* - All base metrics are required to generate a base score.

Temporal Score Metrics

Exploit Code Maturity (E) Not Defined (E:X) Unproven that exploit exists (E:U) Proof of concept code (E:P) Functional exploit exists (E:F) High (E:H) Remediation Level (RL) Not Defined (RL:X) Official fix (RL:O) Temporary fix (RL:T) Workaround (RL:W) Unavailable (RL:U) Report Confidence (RC) Not Defined (RC:X) Unknown (RC:U) Reasonable (RC:R) Confirmed (RC:C)

Environmental Score Metrics

Exploitability Metrics Attack Vector (MAV) Not Defined (MAV:X) Network (MAV:N) Adjacent Network (MAV:A) Local (MAV:L) Physical (MAV:P) Attack Complexity (MAC) Not Defined (MAC:X) Low (MAC:L) High (MAC:H) Privileges Required (MPR) Not Defined (MPR:X) None (MPR:N) Low (MPR:L) High (MPR:H) User Interaction (MUI) Not Defined (MUI:X) None (MUI:N) Required (MUI:R) Scope (MS) Not Defined (MS:X) Unchanged (MS:U) Changed (MS:C) Impact Metrics Confidentiality Impact (MC) Not Defined (MC:X) None (MC:N) Low (MC:L) High (MC:H) Integrity Impact (MI) Not Defined (MI:X) None (MI:N) Low (MI:L) High (MI:H) Availability Impact (MA) Not Defined (MA:X) None (MA:N) Low (MA:L) High (MA:H) Impact Subscore Modifiers Confidentiality Requirement (CR) Not Defined (CR:X) Low (CR:L) Medium (CR:M) High (CR:H) Integrity Requirement (IR) Not Defined (IR:X) Low (IR:L) Medium (IR:M) High (IR:H) Availability Requirement (AR) Not Defined (AR:X) Low (AR:L) Medium (AR:M) High (AR:H) Close Close