CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

CVSS Score Distribution For Top 50 Vendors By Total Number Of "Distinct" Vulnerabilities

Vendor Name Number of Total Vulnerabilities # Of Vulnerabilities Weighted Average % Of Total
0-1 1-2 2-3 3-4 4-5 5-6 6-7 7-8 8-9 9+ 0-1 1-2 2-3 3-4 4-5 5-6 6-7 7-8 8-9 9+
1 Microsoft 8978 175 111 634 249 1728 987 949 1915 40 2190 6.90 2 1 7 3 19 11 11 21 0 24
2 Oracle 8755 87 146 431 564 2643 2491 1013 751 41 588 5.90 1 2 5 6 30 28 12 9 0 7
3 Google 7730 396 55 740 100 1988 691 1250 1338 37 1135 6.30 5 1 10 1 26 9 16 17 0 15
4 Debian 6972 38 84 390 183 1958 1409 1426 1176 22 286 6.10 1 1 6 3 28 20 20 17 0 4
5 Apple 5717 33 58 395 52 1126 709 1523 785 17 1019 6.80 1 1 7 1 20 12 27 14 0 18
6 IBM 5527 53 64 369 988 1489 1050 550 539 27 398 5.70 1 1 7 18 27 19 10 10 0 7
7 Redhat 4576 120 66 344 209 1205 796 730 736 16 354 6.00 3 1 8 5 26 17 16 16 0 8
8 Cisco 4304 40 6 95 193 961 911 565 987 47 499 6.70 1 0 2 4 22 21 13 23 1 12
9 Fedoraproject 3696 103 37 198 104 1069 791 838 451 12 93 5.90 3 1 5 3 29 21 23 12 0 3
10 Canonical 3590 4 53 229 123 1112 632 550 621 9 257 6.20 0 1 6 3 31 18 15 17 0 7
11 Linux 2974 88 106 473 84 925 164 230 763 10 131 5.60 3 4 16 3 31 6 8 26 0 4
12 Opensuse 2824 2 42 178 100 724 572 520 377 5 304 6.30 0 1 6 4 26 20 18 13 0 11
13 Mozilla 2352 12 77 8 541 442 322 400 1 549 7.10 0 1 3 0 23 19 14 17 0 23
14 HP 1814 2 10 66 44 294 258 136 400 20 584 7.50 0 1 4 2 16 14 7 22 1 32
15 Apache 1780 56 11 45 45 439 579 201 305 6 93 6.10 3 1 3 3 25 33 11 17 0 5
16 Netapp 1632 29 23 101 62 623 362 237 169 5 21 5.60 2 1 6 4 38 22 15 10 0 1
17 SUN 1535 3 26 98 44 290 271 108 404 3 288 6.80 0 2 6 3 19 18 7 26 0 19
18 Adobe 1430 21 19 16 240 146 97 96 4 791 8.10 1 0 1 1 17 10 7 7 0 55
19 Jenkins 1263 75 1 58 198 555 149 189 26 1 11 5.00 6 0 5 16 44 12 15 2 0 1
20 SAP 1151 12 3 31 73 378 289 178 124 3 60 6.00 1 0 3 6 33 25 15 11 0 5
21 Suse 981 4 19 80 20 209 120 129 173 227 6.80 0 2 8 2 21 12 13 18 0 23
22 GNU 955 21 12 53 33 256 208 180 153 2 37 6.00 2 1 6 3 27 22 19 16 0 4
23 Siemens 839 24 5 37 30 172 200 227 106 8 30 6.10 3 1 4 4 21 24 27 13 1 4
24 Gitlab 735 17 1 11 76 313 217 63 36 1 5.40 2 0 1 10 43 30 9 5 0 0
25 F5 719 28 1 27 32 201 225 78 94 4 29 5.90 4 0 4 4 28 31 11 13 1 4
26 PHP 686 1 1 20 8 71 207 100 232 2 44 6.90 0 0 3 1 10 30 15 34 0 6
27 Huawei 669 48 4 49 21 85 221 73 129 8 31 5.90 7 1 7 3 13 33 11 19 1 5
28 Imagemagick 628 6 2 2 341 51 123 96 7 5.90 1 0 0 0 54 8 20 15 0 1
29 Wireshark 619 1 23 33 184 300 8 48 3 19 5.80 0 0 4 5 30 48 1 8 0 3
30 Novell 607 1 6 24 6 136 138 47 113 136 6.90 0 1 4 1 22 23 8 19 0 22
31 Vmware 599 8 7 45 33 136 103 96 114 4 53 6.20 1 1 8 6 23 17 16 19 1 9
32 Intel 585 28 8 145 17 253 47 15 65 1 6 4.80 5 1 25 3 43 8 3 11 0 1
33 Symantec 538 4 37 28 117 92 59 108 9 84 6.60 0 1 7 5 22 17 11 20 2 16
34 Mcafee 534 2 7 44 51 187 77 67 73 4 22 5.70 0 1 8 10 35 14 13 14 1 4
35 Dell 477 30 2 37 32 92 106 39 81 4 54 6.00 6 0 8 7 19 22 8 17 1 11
36 Freebsd 476 1 7 61 11 79 88 37 154 3 35 6.40 0 1 13 2 17 18 8 32 1 7
37 Moodle 460 13 7 34 202 109 63 24 8 5.50 3 0 2 7 44 24 14 5 0 2
38 Juniper 450 5 3 34 34 82 110 43 104 6 29 6.20 1 1 8 8 18 24 10 23 1 6
39 Joomla 440 1 2 7 98 92 63 169 8 6.70 0 0 0 2 22 21 14 38 0 2
40 Fortinet 424 28 12 34 158 61 50 50 1 30 5.70 7 0 3 8 37 14 12 12 0 7
41 Cpanel 421 6 49 56 139 64 53 24 4 26 5.50 0 1 12 13 33 15 13 6 1 6
42 XEN 412 1 23 55 11 161 33 60 54 4 10 5.50 0 6 13 3 39 8 15 13 1 2
43 Ffmpeg 402 1 2 114 23 115 74 73 7.10 0 0 0 0 28 6 29 18 0 18
44 Atlassian 396 8 2 55 156 89 39 25 22 5.70 2 0 1 14 39 22 10 6 0 6
45 EMC 395 1 20 29 89 54 49 69 13 71 6.80 0 0 5 7 23 14 12 17 3 18
46 Zohocorp 387 9 16 104 66 56 110 1 25 6.50 2 0 0 4 27 17 14 28 0 6
47 Wordpress 382 8 29 140 86 51 55 1 12 6.00 0 0 2 8 37 23 13 14 0 3
48 Broadcom 380 5 1 13 7 71 86 44 87 2 64 6.90 1 0 3 2 19 23 12 23 1 17
49 Qemu 377 7 17 149 10 85 27 20 52 1 9 4.70 2 5 40 3 23 7 5 14 0 2
50 Mariadb 374 1 5 24 39 187 61 39 14 4 5.30 0 1 6 10 50 16 10 4 0 1

Vendor(s) with highest weighted average (8.10): Adobe  

Weighted average = SUM((Cvss Range (e.g: 2 for range 1-2 )) * (Number of vulnerabilities in that range)) / (Total number of vulnerabilities)
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.