Top 50 Vendors By Total Number Of "Distinct" Vulnerabilities in 2018

Go to year: 1999 2000 2001 2002 2003 2004 2005 2006 2007 2008 2009 2010 2011 2012 2013 2014 2015 2016 2017 2018 2019 2020 2021 All Time Leaders

	Vendor Name	Number of Vulnerabilities
1	Debian	1352
2	Redhat	864
3	Canonical	839
4	Google	788
5	Oracle	782
6	IBM	594
7	Microsoft	583
8	Cisco	358
9	Mozilla	315
10	HP	259
11	Apple	188
12	Linux	179
13	Apache	173
14	Jenkins	161
15	Netapp	147
16	SAP	127
17	Foxitsoftware	123
18	Opensuse	104
19	Adobe	92
20	F5	89
21	Quest	88
22	GNU	86
23	Fedoraproject	83
24	Wireshark	79
25	Intel	79
26	Atlassian	75
27	Schneider-electric	72
28	Imagemagick	71
29	Pivotal Software	64
30	Zohocorp	56
31	Trendmicro	52
32	Artifex	50
33	Juniper	50
34	Dell	48
35	Gitlab	48
36	Libming	42
37	Vmware	40
38	Microfocus	39
39	EMC	39
40	Exiv2	38
41	Qemu	38
42	Mcafee	37
43	Cmsmadesimple	36
44	Advantech	36
45	Synology	36
46	Netiq	36
47	Hdfgroup	35
48	Suse	33
49	Symantec	32
50	Radare	31

CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.