Top 50 Vendors By Total Number Of "Distinct" Vulnerabilities in 2018

Go to year: 1999 2000 2001 2002 2003 2004 2005 2006 2007 2008 2009 2010 2011 2012 2013 2014 2015 2016 2017 2018 2019 2020 2021 2022 All Time Leaders

	Vendor Name	Number of Vulnerabilities
1	Debian	1382
2	Redhat	876
3	Canonical	846
4	Oracle	796
5	Google	788
6	IBM	594
7	Microsoft	583
8	Cisco	358
9	Mozilla	315
10	HP	259
11	Apple	191
12	Linux	179
13	Apache	172
14	Jenkins	161
15	Netapp	148
16	Opensuse	129
17	SAP	127
18	Foxitsoftware	121
19	F5	94
20	Adobe	92
21	Fedoraproject	92
22	Quest	88
23	GNU	85
24	Intel	79
25	Wireshark	79
26	Atlassian	75
27	Schneider-electric	72
28	Imagemagick	71
29	Dell	59
30	Zohocorp	56
31	Pivotal Software	54
32	Trendmicro	53
33	Artifex	50
34	Vmware	50
35	Juniper	50
36	Gitlab	48
37	Broadcom	45
38	Libming	42
39	Microfocus	39
40	Exiv2	38
41	Qemu	38
42	Mcafee	37
43	Cmsmadesimple	36
44	Advantech	36
45	Synology	36
46	Netiq	36
47	Hdfgroup	35
48	Suse	34
49	Radare	31
50	Freebsd	30

CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.

Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.