CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   

CVSS Score Distribution For Top 50 Vendors By Total Number Of "Distinct" Vulnerabilities

Vendor Name Number of Total Vulnerabilities # Of Vulnerabilities Weighted Average % Of Total
0-1 1-2 2-3 3-4 4-5 5-6 6-7 7-8 8-9 9+ 0-1 1-2 2-3 3-4 4-5 5-6 6-7 7-8 8-9 9+
1 Microsoft 9596 792 110 636 251 1726 986 947 1917 40 2191 6.50 8 1 7 3 18 10 10 20 0 23
2 Oracle 9150 337 148 447 571 2683 2530 1022 778 42 592 5.70 4 2 5 6 29 28 11 9 0 6
3 Google 8460 1139 55 738 100 1985 691 1242 1338 37 1135 5.80 13 1 9 1 23 8 15 16 0 13
4 Debian 8287 449 97 448 217 2266 1596 1604 1281 25 304 5.90 5 1 5 3 27 19 19 15 0 4
5 Apple 6113 365 58 396 55 1146 717 1554 786 17 1019 6.50 6 1 6 1 19 12 25 13 0 17
6 IBM 5670 201 64 370 987 1487 1048 550 538 27 398 5.60 4 1 7 17 26 18 10 9 0 7
7 Redhat 4883 221 72 363 222 1322 820 754 738 16 355 5.90 5 1 7 5 27 17 15 15 0 7
8 Fedoraproject 4556 528 37 215 128 1246 882 917 489 15 99 5.40 12 1 5 3 27 19 20 11 0 2
9 Cisco 4438 174 6 96 193 960 911 565 987 47 499 6.50 4 0 2 4 22 21 13 22 1 11
10 Canonical 4001 12 57 258 134 1257 701 595 692 10 285 6.10 0 1 6 3 31 18 15 17 0 7
11 Linux 3212 319 106 476 84 921 164 232 769 10 131 5.30 10 3 15 3 29 5 7 24 0 4
12 Opensuse 3154 10 47 195 108 872 616 577 409 6 314 6.20 0 1 6 3 28 20 18 13 0 10
13 Mozilla 2545 193 12 78 8 541 442 321 400 1 549 6.60 8 0 3 0 21 17 13 16 0 22
14 Netapp 1963 138 26 118 74 710 409 260 196 7 25 5.40 7 1 6 4 36 21 13 10 0 1
15 Apache 1962 230 11 45 45 441 582 203 306 6 93 5.70 12 1 2 2 22 30 10 16 0 5
16 HP 1860 33 11 70 44 299 263 136 400 20 584 7.40 2 1 4 2 16 14 7 22 1 31
17 Adobe 1544 137 19 16 240 146 97 96 4 789 7.60 9 0 1 1 16 9 6 6 0 51
18 SUN 1529 3 26 97 44 290 271 108 404 3 283 6.80 0 2 6 3 19 18 7 26 0 19
19 Jenkins 1455 265 1 58 200 553 150 190 26 1 11 4.50 18 0 4 14 38 10 13 2 0 1
20 SAP 1312 173 3 31 73 378 289 178 124 3 60 5.40 13 0 2 6 29 22 14 9 0 5
21 Suse 1006 23 19 81 20 211 122 128 173 229 6.70 2 2 8 2 21 12 13 17 0 23
22 Siemens 1001 153 5 37 31 180 204 234 116 9 32 5.50 15 0 4 3 18 20 23 12 1 3
23 GNU 983 44 12 54 33 258 208 180 155 2 37 5.90 4 1 5 3 26 21 18 16 0 4
24 Gitlab 863 145 1 11 76 314 216 63 36 1 4.70 17 0 1 9 36 25 7 4 0 0
25 Huawei 816 195 4 49 21 85 221 73 129 8 31 5.00 24 0 6 3 10 27 9 16 1 4
26 F5 774 81 1 26 32 202 226 77 95 4 30 5.50 10 0 3 4 26 29 10 12 1 4
27 Intel 729 171 8 145 17 253 48 15 65 1 6 4.00 23 1 20 2 35 7 2 9 0 1
28 PHP 698 8 1 20 8 73 210 100 232 2 44 6.80 1 0 3 1 10 30 14 33 0 6
29 Vmware 658 68 7 45 33 137 103 95 113 4 53 5.80 10 1 7 5 21 16 14 17 1 8
30 Wireshark 640 22 23 33 184 300 8 48 3 19 5.60 3 0 4 5 29 47 1 8 0 3
31 Imagemagick 635 13 2 2 341 51 123 96 7 5.90 2 0 0 0 54 8 19 15 0 1
32 Novell 609 6 24 6 136 140 48 113 136 6.90 0 1 4 1 22 23 8 19 0 22
33 Dell 593 146 2 37 32 92 106 39 81 4 54 5.00 25 0 6 5 16 18 7 14 1 9
34 Mcafee 555 11 8 45 51 192 82 67 73 4 22 5.60 2 1 8 9 35 15 12 13 1 4
35 Fortinet 543 147 12 34 158 61 50 50 1 30 4.70 27 0 2 6 29 11 9 9 0 6
36 Symantec 541 3 4 37 28 117 92 59 108 9 84 6.60 1 1 7 5 22 17 11 20 2 16
37 Moodle 503 56 7 34 203 108 63 24 8 5.10 11 0 1 7 40 21 13 5 0 2
38 Juniper 499 54 3 34 34 82 110 43 104 6 29 5.70 11 1 7 7 16 22 9 21 1 6
39 Freebsd 478 2 7 61 11 79 89 37 154 3 35 6.40 0 1 13 2 17 19 8 32 1 7
40 Joomla 448 9 2 7 98 92 63 169 8 6.60 2 0 0 2 22 21 14 38 0 2
41 XEN 442 31 23 55 11 161 33 60 54 4 10 5.20 7 5 12 2 36 7 14 12 1 2
42 Broadcom 427 37 1 14 7 73 89 45 94 2 65 6.40 9 0 3 2 17 21 11 22 0 15
43 Zohocorp 423 45 16 104 66 56 110 1 25 6.00 11 0 0 4 25 16 13 26 0 6
44 Cpanel 422 1 6 49 56 139 64 53 24 4 26 5.50 0 1 12 13 33 15 13 6 1 6
45 Ffmpeg 408 6 1 2 114 23 115 74 73 7.00 1 0 0 0 28 6 28 18 0 18
46 Atlassian 404 17 2 55 156 88 39 25 22 5.60 4 0 0 14 39 22 10 6 0 5
47 Mariadb 396 3 9 27 49 189 61 39 15 4 5.20 1 2 7 12 48 15 10 4 0 1
48 EMC 395 1 20 29 89 54 49 69 13 71 6.80 0 0 5 7 23 14 12 17 3 18
49 Wordpress 391 9 8 29 140 86 51 55 1 12 5.90 2 0 2 7 36 22 13 14 0 3
50 Qemu 386 16 17 149 10 85 27 21 51 1 9 4.60 4 4 39 3 22 7 5 13 0 2

Vendor(s) with highest weighted average (7.60): Adobe  

Weighted average = SUM((Cvss Range (e.g: 2 for range 1-2 )) * (Number of vulnerabilities in that range)) / (Total number of vulnerabilities)
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.