CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

CVSS Score Distribution For Top 50 Vendors By Total Number Of "Distinct" Vulnerabilities

Vendor Name Number of Total Vulnerabilities # Of Vulnerabilities Weighted Average % Of Total
0-1 1-2 2-3 3-4 4-5 5-6 6-7 7-8 8-9 9+ 0-1 1-2 2-3 3-4 4-5 5-6 6-7 7-8 8-9 9+
1 Microsoft 7972 2 105 578 224 1468 890 742 1802 25 2136 7.10 0 1 7 3 18 11 9 23 0 27
2 Oracle 7766 2 138 370 542 2361 2183 902 660 33 575 5.90 0 2 5 7 30 28 12 8 0 7
3 Google 6406 40 497 70 1749 637 1084 1201 35 1093 6.70 0 1 8 1 27 10 17 19 1 17
4 Debian 5267 68 281 138 1463 1084 1007 971 16 239 6.20 0 1 5 3 28 21 19 18 0 5
5 IBM 5231 2 63 340 940 1408 997 527 533 26 395 5.70 0 1 6 18 27 19 10 10 0 8
6 Apple 5171 1 55 351 47 969 649 1421 732 16 930 6.80 0 1 7 1 19 13 27 14 0 18
7 Cisco 4068 2 6 89 175 894 884 547 949 41 481 6.70 0 0 2 4 22 22 13 23 1 12
8 Redhat 3948 63 320 170 1031 714 602 699 14 335 6.20 0 2 8 4 26 18 15 18 0 8
9 Canonical 3030 45 196 94 895 534 472 558 7 229 6.20 0 1 6 3 30 18 16 18 0 8
10 Linux 2733 1 102 443 73 867 161 217 731 9 129 5.80 0 4 16 3 32 6 8 27 0 5
11 Opensuse 2371 39 158 82 584 470 443 332 5 258 6.30 0 2 7 3 25 20 19 14 0 11
12 Mozilla 2306 12 76 8 522 435 307 398 1 547 7.10 0 1 3 0 23 19 13 17 0 24
13 Fedoraproject 2145 26 116 55 603 501 441 320 8 75 6.10 0 1 5 3 28 23 21 15 0 3
14 HP 1773 1 10 61 43 289 254 126 387 20 582 7.50 0 1 3 2 16 14 7 22 1 33
15 SUN 1548 3 26 98 44 290 272 112 404 3 296 6.90 0 2 6 3 19 18 7 26 0 19
16 Apache 1526 10 43 42 397 515 172 269 4 74 6.20 0 1 3 3 26 34 11 18 0 5
17 Adobe 1364 1 19 13 222 144 87 93 4 781 8.30 0 0 1 1 16 11 6 7 0 57
18 SAP 980 2 26 63 299 259 163 111 3 54 6.10 0 0 3 6 31 26 17 11 0 6
19 Jenkins 920 1 53 125 439 121 151 19 1 10 5.30 0 0 6 14 48 13 16 2 0 1
20 GNU 900 1 12 52 33 243 207 162 154 36 6.10 0 1 6 4 27 23 18 17 0 4
21 Suse 844 18 77 13 162 106 111 163 194 6.90 0 2 9 2 19 13 13 19 0 23
22 Netapp 752 12 42 28 257 160 140 93 3 17 5.90 0 2 6 4 34 21 19 12 0 2
23 PHP 654 1 20 8 68 203 95 215 2 42 6.80 0 0 3 1 10 31 15 33 0 6
24 Novell 622 1 7 24 8 146 139 46 115 136 6.90 0 1 4 1 23 22 7 18 0 22
25 Imagemagick 613 2 1 339 50 118 96 7 6.00 0 0 0 0 55 8 19 16 0 1
26 Wireshark 597 23 33 181 284 8 46 3 19 5.80 0 0 4 6 30 48 1 8 1 3
27 Gitlab 552 8 50 230 178 56 29 1 5.60 0 0 1 9 42 32 10 5 0 0
28 Symantec 537 4 37 28 117 92 59 107 9 84 6.60 0 1 7 5 22 17 11 20 2 16
29 F5 523 1 23 26 154 174 58 58 4 25 6.00 0 0 4 5 29 33 11 11 1 5
30 Siemens 508 5 22 21 103 126 119 83 6 23 6.30 0 1 4 4 20 25 23 16 1 5
31 Intel 487 8 121 17 220 41 12 62 1 5 5.00 0 2 25 3 45 8 2 13 0 1
32 Vmware 476 6 35 26 103 76 80 96 4 50 6.40 0 1 7 5 22 16 17 20 1 11
33 Freebsd 470 7 59 11 76 88 37 154 3 35 6.40 0 1 13 2 16 19 8 33 1 7
34 Mcafee 467 7 40 46 157 64 62 66 4 21 5.80 0 1 9 10 34 14 13 14 1 4
35 Joomla 426 2 7 94 89 61 165 8 6.70 0 0 0 2 22 21 14 39 0 2
36 Moodle 424 6 31 195 104 60 20 8 5.70 0 0 1 7 46 25 14 5 0 2
37 EMC 423 1 26 28 97 67 49 71 13 71 6.70 0 0 6 7 23 16 12 17 3 17
38 Cpanel 421 6 49 56 139 64 53 24 4 26 5.50 0 1 12 13 33 15 13 6 1 6
39 Juniper 386 3 29 27 71 95 36 95 5 25 6.30 0 1 8 7 18 25 9 25 1 6
40 Wordpress 369 8 26 138 84 49 52 1 11 6.00 0 0 2 7 37 23 13 14 0 3
41 XEN 369 22 46 7 145 34 51 51 4 9 5.50 0 6 12 2 39 9 14 14 1 2
42 Ffmpeg 366 1 2 92 23 101 74 73 7.20 0 0 1 0 25 6 28 20 0 20
43 Qemu 352 17 141 10 78 26 19 51 1 9 4.80 0 5 40 3 22 7 5 14 0 3
44 Foxitsoftware 346 1 1 73 48 188 24 11 6.60 0 0 0 0 21 14 54 7 0 3
45 Atlassian 344 2 53 137 77 35 19 21 5.70 0 0 1 15 40 22 10 6 0 6
46 Drupal 322 11 47 95 72 45 42 3 7 5.80 0 0 3 15 30 22 14 13 1 2
47 Dell 299 2 20 25 57 64 29 55 2 45 6.50 0 1 7 8 19 21 10 18 1 15
48 Broadcom 298 1 11 5 52 61 24 79 2 63 7.10 0 0 4 2 17 20 8 27 1 21
49 Zohocorp 290 11 96 50 41 67 1 24 6.50 0 0 0 4 33 17 14 23 0 8
50 Fortinet 288 5 24 127 42 30 36 24 6.00 0 0 2 8 44 15 10 13 0 8

Vendor(s) with highest weighted average (8.30): Adobe  

Weighted average = SUM((Cvss Range (e.g: 2 for range 1-2 )) * (Number of vulnerabilities in that range)) / (Total number of vulnerabilities)
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.