This is not the latest report. Click
here to view the latest report.
CVSS v3.1 Statistics for Vaadin Ltd. as of 05/01/2021
13
24
3
18
Reference
0-69.9%
|
Reference |
75.0
Contributor
70-94.9%
Provider
95-100%
CVE | CNA Value | Alignment | NIST Value | Reason |
---|---|---|---|---|
CVE-2021-31403 (6 of 8) | Attack Vector (AV) Local | Attack Vector (AV) Local | ||
Attack Complexity (AC) High | Attack Complexity (AC) High | |||
Privileges Required (PR) None | ≠ | Privileges Required (PR) Low | Local attacker typically implies some privilege level needed | |
User Interaction (UI) None | User Interaction (UI) None | |||
Scope (S) Unchanged | Scope (S) Unchanged | |||
Confidentiality (C) Low | Confidentiality (C) Low | |||
Integrity (I) Low | ≠ | Integrity (I) None | No integrity impacts identified | |
Availability (A) None | Availability (A) None | |||
CVE-2021-31404 (6 of 8) | Attack Vector (AV) Local | Attack Vector (AV) Local | ||
Attack Complexity (AC) High | Attack Complexity (AC) High | |||
Privileges Required (PR) None | ≠ | Privileges Required (PR) Low | Access level identified as higher than "low" such as SYSTEM or Administrator | |
User Interaction (UI) None | User Interaction (UI) None | |||
Scope (S) Unchanged | Scope (S) Unchanged | |||
Confidentiality (C) Low | Confidentiality (C) Low | |||
Integrity (I) Low | ≠ | Integrity (I) None | No integrity impacts identified | |
Availability (A) None | Availability (A) None | |||
CVE-2021-31406 (6 of 8) | Attack Vector (AV) Local | Attack Vector (AV) Local | ||
Attack Complexity (AC) High | Attack Complexity (AC) High | |||
Privileges Required (PR) None | ≠ | Privileges Required (PR) Low | Local attacker typically implies some privilege level needed | |
User Interaction (UI) None | User Interaction (UI) None | |||
Scope (S) Unchanged | Scope (S) Unchanged | |||
Confidentiality (C) Low | Confidentiality (C) Low | |||
Integrity (I) Low | ≠ | Integrity (I) None | No integrity impacts identified | |
Availability (A) None | Availability (A) None |