Top 50 Vendors By Total Number Of "Distinct" Vulnerabilities in 2018

Go to year: 1999 2000 2001 2002 2003 2004 2005 2006 2007 2008 2009 2010 2011 2012 2013 2014 2015 2016 2017 2018 2019 All Time Leaders

	Vendor Name	Number of Vulnerabilities
1	Debian	952
2	Google	784
3	Microsoft	709
4	Oracle	692
5	Redhat	632
6	IBM	597
7	Canonical	494
8	Cisco	424
9	Qualcomm	376
10	Adobe	372
11	Mozilla	359
12	Foxitsoftware	247
13	HP	225
14	Huawei	186
15	Apple	184
16	Linux	171
17	Jenkins	150
18	Apache	146
19	SAP	115
20	F5	80
21	Wireshark	79
22	GNU	76
23	Imagemagick	71
24	Tp-link	68
25	Samsung	62
26	Intel	61
27	Trendmicro	59
28	Schneider-electric	59
29	Atlassian	56
30	D-link	54
31	Juniper	53
32	Artifex	49
33	Siemens	45
34	Zohocorp	44
35	Libming	42
36	Gitlab	42
37	Pivotal Software	39
38	Mcafee	38
39	Foscam	38
40	Exiv2	38
41	Quest	36
42	Cmsmadesimple	36
43	Advantech	35
44	Hdfgroup	35
45	Moxa	35
46	Qemu	35
47	Opensuse	34
48	Philips	33
49	Fedoraproject	33
50	Dell	31

CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.