NVD CNA Status

This is not the latest report. Click here to view the latest report.

CVSS v3.1 Statistics for Patchstack as of 07/11/2025

Total Number CVEs Submitted

11280

Number of Metrics Compared

320

Acceptance Level Thresholds

Total Number CVEs Reviewed

Analyst Match Count

241

Reference

0-69.9%

Acceptance Level

Contributor

Match Percent

75.3

Contributor

70-94.9%

Provider

95-100%

CVE	CNA Value	Alignment	NIST Value	Reason
CVE-2021-36875 (7 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) High		Privileges Required (PR) High
	User Interaction (UI) Required		User Interaction (UI) Required
	Scope (S) Changed		Scope (S) Changed
	Confidentiality (C) Low		Confidentiality (C) Low
	Integrity (I) Low		Integrity (I) Low
	Availability (A) Low	≠	Availability (A) None
CVE-2022-38057 (5 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) None		Privileges Required (PR) None
	User Interaction (UI) None		User Interaction (UI) None
	Scope (S) Unchanged		Scope (S) Unchanged
	Confidentiality (C) None	≠	Confidentiality (C) High	No limiting factors for confidentiality listed
	Integrity (I) Low	≠	Integrity (I) High	No limiting factors for integrity listed
	Availability (A) Low	≠	Availability (A) High	No limiting factors for availability listed
CVE-2022-45830 (5 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) None		Privileges Required (PR) None
	User Interaction (UI) None		User Interaction (UI) None
	Scope (S) Unchanged		Scope (S) Unchanged
	Confidentiality (C) None	≠	Confidentiality (C) High	No limiting factors for confidentiality listed
	Integrity (I) Low	≠	Integrity (I) High	No limiting factors for integrity listed
	Availability (A) Low	≠	Availability (A) High	No limiting factors for availability listed
CVE-2023-40000 (6 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) None		Privileges Required (PR) None
	User Interaction (UI) None	≠	User Interaction (UI) Required	Internet browsing, Link clicking and/or file interaction identified
	Scope (S) Changed		Scope (S) Changed
	Confidentiality (C) Low		Confidentiality (C) Low
	Integrity (I) Low		Integrity (I) Low
	Availability (A) Low	≠	Availability (A) None	No availability impacts identified
CVE-2023-41695 (4 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) Low		Privileges Required (PR) Low
	User Interaction (UI) Required	≠	User Interaction (UI) None	User Interaction not identified
	Scope (S) Unchanged		Scope (S) Unchanged
	Confidentiality (C) None	≠	Confidentiality (C) High	No limiting factors for confidentiality listed
	Integrity (I) Low	≠	Integrity (I) High	No limiting factors for integrity listed
	Availability (A) None	≠	Availability (A) High	No limiting factors for availability listed
CVE-2023-45760 (5 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) Low		Privileges Required (PR) Low
	User Interaction (UI) None		User Interaction (UI) None
	Scope (S) Unchanged		Scope (S) Unchanged
	Confidentiality (C) Low	≠	Confidentiality (C) High	No limiting factors for confidentiality listed
	Integrity (I) None	≠	Integrity (I) High	No limiting factors for integrity listed
	Availability (A) None	≠	Availability (A) High	No limiting factors for availability listed
CVE-2023-46309 (6 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) None		Privileges Required (PR) None
	User Interaction (UI) None		User Interaction (UI) None
	Scope (S) Unchanged		Scope (S) Unchanged
	Confidentiality (C) None	≠	Confidentiality (C) Low	Information leaked appears non-critical/sensitive
	Integrity (I) Low		Integrity (I) Low
	Availability (A) None	≠	Availability (A) Low	Does not result in total loss of availability
CVE-2023-46310 (5 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) None		Privileges Required (PR) None
	User Interaction (UI) None	≠	User Interaction (UI) Required	Internet browsing, Link clicking and/or file interaction identified
	Scope (S) Unchanged	≠	Scope (S) Changed	Security boundary cross identified
	Confidentiality (C) None	≠	Confidentiality (C) Low	Information leaked appears non-critical/sensitive
	Integrity (I) Low		Integrity (I) Low
	Availability (A) None		Availability (A) None
CVE-2023-47837 (7 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) Low		Privileges Required (PR) Low
	User Interaction (UI) None		User Interaction (UI) None
	Scope (S) Unchanged		Scope (S) Unchanged
	Confidentiality (C) Low	≠	Confidentiality (C) High	No limiting factors for confidentiality listed
	Integrity (I) High		Integrity (I) High
	Availability (A) High		Availability (A) High
CVE-2023-51356 (8 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) Low		Privileges Required (PR) Low
	User Interaction (UI) None		User Interaction (UI) None
	Scope (S) Unchanged		Scope (S) Unchanged
	Confidentiality (C) High		Confidentiality (C) High
	Integrity (I) High		Integrity (I) High
	Availability (A) High		Availability (A) High
CVE-2024-27995 (6 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) High	≠	Privileges Required (PR) Low	Privilege level not clearly identified to qualify as HIGH (typically "root" or "administrator")
	User Interaction (UI) Required		User Interaction (UI) Required
	Scope (S) Changed		Scope (S) Changed
	Confidentiality (C) Low		Confidentiality (C) Low
	Integrity (I) Low		Integrity (I) Low
	Availability (A) Low	≠	Availability (A) None	No availability impacts identified
CVE-2024-30222 (6 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) High	≠	Attack Complexity (AC) Low	No Race Condition, implementation specific secrets required or MiTM identified for NVD analyst
	Privileges Required (PR) Low		Privileges Required (PR) Low
	User Interaction (UI) None		User Interaction (UI) None
	Scope (S) Changed	≠	Scope (S) Unchanged	Unclear if Scope change occurs. No identification of security boundaries being crossed.
	Confidentiality (C) High		Confidentiality (C) High
	Integrity (I) High		Integrity (I) High
	Availability (A) High		Availability (A) High
CVE-2024-30223 (6 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) High	≠	Attack Complexity (AC) Low	No Race Condition, implementation specific secrets required or MiTM identified for NVD analyst
	Privileges Required (PR) None		Privileges Required (PR) None
	User Interaction (UI) None		User Interaction (UI) None
	Scope (S) Changed	≠	Scope (S) Unchanged	Unclear if Scope change occurs. No identification of security boundaries being crossed.
	Confidentiality (C) High		Confidentiality (C) High
	Integrity (I) High		Integrity (I) High
	Availability (A) High		Availability (A) High
CVE-2024-32568 (7 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) None		Privileges Required (PR) None
	User Interaction (UI) Required		User Interaction (UI) Required
	Scope (S) Changed		Scope (S) Changed
	Confidentiality (C) Low		Confidentiality (C) Low
	Integrity (I) Low		Integrity (I) Low
	Availability (A) Low	≠	Availability (A) None	No availability impacts identified
CVE-2024-33921 (5 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) Low		Privileges Required (PR) Low
	User Interaction (UI) None		User Interaction (UI) None
	Scope (S) Unchanged		Scope (S) Unchanged
	Confidentiality (C) None	≠	Confidentiality (C) High	No limiting factors for confidentiality listed
	Integrity (I) Low	≠	Integrity (I) High	No limiting factors for integrity listed
	Availability (A) None	≠	Availability (A) High	No limiting factors for availability listed
CVE-2024-37479 (6 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) High	≠	Attack Complexity (AC) Low	No Race Condition, implementation specific secrets required or MiTM identified for NVD analyst
	Privileges Required (PR) Low		Privileges Required (PR) Low
	User Interaction (UI) None		User Interaction (UI) None
	Scope (S) Changed	≠	Scope (S) Unchanged	Unclear if Scope change occurs. No identification of security boundaries being crossed.
	Confidentiality (C) High		Confidentiality (C) High
	Integrity (I) High		Integrity (I) High
	Availability (A) High		Availability (A) High
CVE-2024-43346 (7 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) Low		Privileges Required (PR) Low
	User Interaction (UI) Required		User Interaction (UI) Required
	Scope (S) Changed		Scope (S) Changed
	Confidentiality (C) Low		Confidentiality (C) Low
	Integrity (I) Low		Integrity (I) Low
	Availability (A) Low	≠	Availability (A) None	No availability impacts identified
CVE-2024-48036 (7 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) Low		Privileges Required (PR) Low
	User Interaction (UI) Required		User Interaction (UI) Required
	Scope (S) Changed		Scope (S) Changed
	Confidentiality (C) Low		Confidentiality (C) Low
	Integrity (I) Low		Integrity (I) Low
	Availability (A) Low	≠	Availability (A) None	No availability impacts identified
CVE-2024-50443 (7 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) Low		Privileges Required (PR) Low
	User Interaction (UI) Required		User Interaction (UI) Required
	Scope (S) Changed		Scope (S) Changed
	Confidentiality (C) Low		Confidentiality (C) Low
	Integrity (I) Low		Integrity (I) Low
	Availability (A) Low	≠	Availability (A) None	No availability impacts identified
CVE-2025-22659 (7 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) Low		Privileges Required (PR) Low
	User Interaction (UI) Required		User Interaction (UI) Required
	Scope (S) Changed		Scope (S) Changed
	Confidentiality (C) Low		Confidentiality (C) Low
	Integrity (I) Low		Integrity (I) Low
	Availability (A) Low	≠	Availability (A) None	No availability impacts identified
CVE-2025-22777 (8 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) None		Privileges Required (PR) None
	User Interaction (UI) None		User Interaction (UI) None
	Scope (S) Unchanged		Scope (S) Unchanged
	Confidentiality (C) High		Confidentiality (C) High
	Integrity (I) High		Integrity (I) High
	Availability (A) High		Availability (A) High
CVE-2025-22800 (5 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) Low		Privileges Required (PR) Low
	User Interaction (UI) None		User Interaction (UI) None
	Scope (S) Unchanged		Scope (S) Unchanged
	Confidentiality (C) None	≠	Confidentiality (C) High	No limiting factors for confidentiality listed
	Integrity (I) None	≠	Integrity (I) High	No limiting factors for integrity listed
	Availability (A) Low	≠	Availability (A) High	No limiting factors for availability listed
CVE-2025-23798 (7 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) None		Privileges Required (PR) None
	User Interaction (UI) Required		User Interaction (UI) Required
	Scope (S) Changed		Scope (S) Changed
	Confidentiality (C) Low		Confidentiality (C) Low
	Integrity (I) Low		Integrity (I) Low
	Availability (A) Low	≠	Availability (A) None	No availability impacts identified
CVE-2025-24717 (5 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) None		Privileges Required (PR) None
	User Interaction (UI) Required		User Interaction (UI) Required
	Scope (S) Unchanged		Scope (S) Unchanged
	Confidentiality (C) None	≠	Confidentiality (C) High	No limiting factors for confidentiality listed
	Integrity (I) Low	≠	Integrity (I) High	No limiting factors for integrity listed
	Availability (A) Low	≠	Availability (A) High	No limiting factors for availability listed
CVE-2025-26773 (5 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) Low		Privileges Required (PR) Low
	User Interaction (UI) None		User Interaction (UI) None
	Scope (S) Unchanged		Scope (S) Unchanged
	Confidentiality (C) Low	≠	Confidentiality (C) High	No limiting factors for confidentiality listed
	Integrity (I) None	≠	Integrity (I) High	No limiting factors for integrity listed
	Availability (A) None	≠	Availability (A) High	No limiting factors for availability listed
CVE-2025-26877 (8 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) Low		Privileges Required (PR) Low
	User Interaction (UI) Required		User Interaction (UI) Required
	Scope (S) Changed		Scope (S) Changed
	Confidentiality (C) Low		Confidentiality (C) Low
	Integrity (I) Low		Integrity (I) Low
	Availability (A) Low		Availability (A) Low
CVE-2025-26909 (6 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) None		Privileges Required (PR) None
	User Interaction (UI) Required	≠	User Interaction (UI) None	User Interaction not identified
	Scope (S) Changed	≠	Scope (S) Unchanged	Unclear if Scope change occurs. No identification of security boundaries being crossed.
	Confidentiality (C) High		Confidentiality (C) High
	Integrity (I) High		Integrity (I) High
	Availability (A) High		Availability (A) High
CVE-2025-26990 (4 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) High	≠	Attack Complexity (AC) Low	No Race Condition, implementation specific secrets required or MiTM identified for NVD analyst
	Privileges Required (PR) High		Privileges Required (PR) High
	User Interaction (UI) None		User Interaction (UI) None
	Scope (S) Changed	≠	Scope (S) Unchanged	Unclear if Scope change occurs. No identification of security boundaries being crossed.
	Confidentiality (C) Low	≠	Confidentiality (C) High	No limiting factors for confidentiality listed
	Integrity (I) Low	≠	Integrity (I) None	No integrity impacts identified
	Availability (A) None		Availability (A) None
CVE-2025-31828 (5 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) None		Privileges Required (PR) None
	User Interaction (UI) Required		User Interaction (UI) Required
	Scope (S) Unchanged		Scope (S) Unchanged
	Confidentiality (C) None	≠	Confidentiality (C) High	No limiting factors for confidentiality listed
	Integrity (I) Low	≠	Integrity (I) High	No limiting factors for integrity listed
	Availability (A) None	≠	Availability (A) High	No limiting factors for availability listed
CVE-2025-32598 (7 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) None		Privileges Required (PR) None
	User Interaction (UI) Required		User Interaction (UI) Required
	Scope (S) Changed		Scope (S) Changed
	Confidentiality (C) Low		Confidentiality (C) Low
	Integrity (I) Low		Integrity (I) Low
	Availability (A) Low	≠	Availability (A) None	No availability impacts identified
CVE-2025-47438 (7 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) High	≠	Attack Complexity (AC) Low	No Race Condition, implementation specific secrets required or MiTM identified for NVD analyst
	Privileges Required (PR) None		Privileges Required (PR) None
	User Interaction (UI) None		User Interaction (UI) None
	Scope (S) Unchanged		Scope (S) Unchanged
	Confidentiality (C) High		Confidentiality (C) High
	Integrity (I) High		Integrity (I) High
	Availability (A) High		Availability (A) High
CVE-2025-47511 (6 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) High		Privileges Required (PR) High
	User Interaction (UI) None		User Interaction (UI) None
	Scope (S) Changed	≠	Scope (S) Unchanged	Unclear if Scope change occurs. No identification of security boundaries being crossed.
	Confidentiality (C) None		Confidentiality (C) None
	Integrity (I) None	≠	Integrity (I) High	No limiting factors for integrity listed
	Availability (A) High		Availability (A) High
CVE-2025-47682 (5 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) None		Privileges Required (PR) None
	User Interaction (UI) None		User Interaction (UI) None
	Scope (S) Changed	≠	Scope (S) Unchanged	Unclear if Scope change occurs. No identification of security boundaries being crossed.
	Confidentiality (C) High		Confidentiality (C) High
	Integrity (I) None	≠	Integrity (I) High	No limiting factors for integrity listed
	Availability (A) Low	≠	Availability (A) High	No limiting factors for availability listed
CVE-2025-48126 (7 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) High	≠	Attack Complexity (AC) Low	No Race Condition, implementation specific secrets required or MiTM identified for NVD analyst
	Privileges Required (PR) None		Privileges Required (PR) None
	User Interaction (UI) None		User Interaction (UI) None
	Scope (S) Unchanged		Scope (S) Unchanged
	Confidentiality (C) High		Confidentiality (C) High
	Integrity (I) High		Integrity (I) High
	Availability (A) High		Availability (A) High
CVE-2025-48263 (7 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) Low		Privileges Required (PR) Low
	User Interaction (UI) Required		User Interaction (UI) Required
	Scope (S) Changed		Scope (S) Changed
	Confidentiality (C) Low		Confidentiality (C) Low
	Integrity (I) Low		Integrity (I) Low
	Availability (A) Low	≠	Availability (A) None	No availability impacts identified
CVE-2025-48270 (7 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) Low		Privileges Required (PR) Low
	User Interaction (UI) Required		User Interaction (UI) Required
	Scope (S) Changed		Scope (S) Changed
	Confidentiality (C) Low		Confidentiality (C) Low
	Integrity (I) Low		Integrity (I) Low
	Availability (A) Low	≠	Availability (A) None	No availability impacts identified
CVE-2025-48274 (6 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) None		Privileges Required (PR) None
	User Interaction (UI) None		User Interaction (UI) None
	Scope (S) Changed	≠	Scope (S) Unchanged	Unclear if Scope change occurs. No identification of security boundaries being crossed.
	Confidentiality (C) High		Confidentiality (C) High
	Integrity (I) None		Integrity (I) None
	Availability (A) Low	≠	Availability (A) None	No availability impacts identified
CVE-2025-48334 (6 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) Low		Privileges Required (PR) Low
	User Interaction (UI) None		User Interaction (UI) None
	Scope (S) Unchanged		Scope (S) Unchanged
	Confidentiality (C) None		Confidentiality (C) None
	Integrity (I) None	≠	Integrity (I) Low	Integrity impact appears non-critical
	Availability (A) High	≠	Availability (A) None	No availability impacts identified
CVE-2025-49262 (3 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) High	≠	Privileges Required (PR) Low	Privilege level not clearly identified to qualify as HIGH (typically "root" or "administrator")
	User Interaction (UI) None	≠	User Interaction (UI) Required	Internet browsing, Link clicking and/or file interaction identified
	Scope (S) Changed		Scope (S) Changed
	Confidentiality (C) High	≠	Confidentiality (C) Low	Information leaked appears non-critical/sensitive
	Integrity (I) None	≠	Integrity (I) Low	Integrity impact appears non-critical
	Availability (A) Low	≠	Availability (A) None	No availability impacts identified
CVE-2025-49291 (5 of 8)	Attack Vector (AV) Network		Attack Vector (AV) Network
	Attack Complexity (AC) Low		Attack Complexity (AC) Low
	Privileges Required (PR) None		Privileges Required (PR) None
	User Interaction (UI) Required		User Interaction (UI) Required
	Scope (S) Unchanged		Scope (S) Unchanged
	Confidentiality (C) None	≠	Confidentiality (C) High	No limiting factors for confidentiality listed
	Integrity (I) Low	≠	Integrity (I) High	No limiting factors for integrity listed
	Availability (A) None	≠	Availability (A) High	No limiting factors for availability listed

You are viewing this page in an unauthorized frame window.

Information Technology Laboratory

National Vulnerability Database

National Vulnerability Database

NVD

CVSS v3.1 Statistics for Patchstack as of 07/11/2025