Common Vulnerability Scoring System Calculator

This page provides a calculator for creating CVSS vulnerability severity scores. To fully understand how to score CVSS values and interpret CVSVS scores, consult the CVSS standards guide. The scores are computed in sequence such that the Base Score is used to calculate the Temporal Score and the Temporal Score is used to calculate the Environmental Score. This page is a JavaScript version of the NVD calculator.

CVSS Base ScoreUndefined
CVSS Temporal ScoreUndefined
CVSS Environmental ScoreUndefined
Overall CVSS ScoreUndefined

Base Score Metrics

These metrics describe inherent characteristics of the vulnerability. All of these metrics must be filled in to produce any CVSS scores.

Related exploit range
(AccessVector)
Attack complexity
(AccessComplexity)
Level of authentication needed
(Authentication)
Confidentiality impact
(ConfImpact)
Integrity impact
(IntegImpact)
Availability impact
(AvailImpact)
Impact value weighting
(ImpactBias)
Environmental Score Metrics

This section addresses metrics that describe the effect of a vulnerability within an organization's environment. These metrics must be calculated separately for each organization.

Organization specific potential for loss
(CollateralDamagePotential)
Percentage of vulnerable systems
(TargetDistribution)

Temporal Score Metrics

These metrics describe elements about the vulnerability that change over time.

Availability of exploit
(Exploitability)
Type of fix available
(RemediationLevel)
Level of verification that vulnerability exists
(ReportConfidence)