CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  Take a third party risk management course for FREE
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

CVSS Score Distribution For Top 50 Vendors By Total Number Of "Distinct" Vulnerabilities

Vendor Name Number of Total Vulnerabilities # Of Vulnerabilities Weighted Average % Of Total
0-1 1-2 2-3 3-4 4-5 5-6 6-7 7-8 8-9 9+ 0-1 1-2 2-3 3-4 4-5 5-6 6-7 7-8 8-9 9+
1 Microsoft 8720 2 110 632 244 1705 958 937 1905 37 2190 7.00 0 1 7 3 20 11 11 22 0 25
2 Oracle 8599 2 146 425 563 2627 2470 997 743 40 586 5.90 0 2 5 7 31 29 12 9 0 7
3 Google 7289 54 714 98 1982 690 1248 1334 37 1132 6.60 0 1 10 1 27 9 17 18 1 16
4 Debian 6628 79 370 170 1845 1358 1373 1135 19 279 6.20 0 1 6 3 28 20 21 17 0 4
5 Apple 5676 1 58 395 52 1124 706 1520 785 17 1018 6.80 0 1 7 1 20 12 27 14 0 18
6 IBM 5456 2 64 365 986 1484 1044 549 537 27 398 5.70 0 1 7 18 27 19 10 10 0 7
7 Redhat 4297 66 338 189 1130 778 698 728 16 354 6.20 0 2 8 4 26 18 16 17 0 8
8 Cisco 4251 2 6 94 192 952 910 565 987 45 498 6.70 0 0 2 5 22 21 13 23 1 12
9 Fedoraproject 3368 34 183 91 985 755 796 427 10 87 6.10 0 1 5 3 29 22 24 13 0 3
10 Canonical 3361 48 224 110 1001 595 519 601 9 254 6.20 0 1 7 3 30 18 15 18 0 8
11 Linux 2874 1 105 469 80 920 165 231 764 9 130 5.80 0 4 16 3 32 6 8 27 0 5
12 Opensuse 2716 42 174 95 680 539 508 370 5 303 6.30 0 2 6 3 25 20 19 14 0 11
13 Mozilla 2352 12 77 8 541 442 322 400 1 549 7.10 0 1 3 0 23 19 14 17 0 23
14 HP 1811 1 10 66 44 294 259 133 400 20 584 7.50 0 1 4 2 16 14 7 22 1 32
15 Apache 1711 11 44 45 434 576 201 302 5 93 6.30 0 1 3 3 25 34 12 18 0 5
16 SUN 1535 3 26 98 44 290 271 108 404 3 288 6.80 0 2 6 3 19 18 7 26 0 19
17 Netapp 1446 21 98 55 552 330 205 160 4 21 5.70 0 1 7 4 38 23 14 11 0 1
18 Adobe 1409 19 16 240 146 97 96 4 791 8.20 0 0 1 1 17 10 7 7 0 56
19 SAP 1119 3 31 73 367 283 175 124 3 60 6.00 0 0 3 7 33 25 16 11 0 5
20 Jenkins 1101 1 58 169 506 143 186 26 1 11 5.30 0 0 5 15 46 13 17 2 0 1
21 GNU 923 1 12 52 33 254 207 172 153 2 37 6.10 0 1 6 4 28 22 19 17 0 4
22 Suse 917 18 78 14 173 114 122 171 227 6.90 0 2 9 2 19 12 13 19 0 25
23 Siemens 780 5 35 30 162 195 209 106 8 30 6.30 0 1 4 4 21 25 27 14 1 4
24 Gitlab 701 1 11 71 307 213 63 34 1 5.50 0 0 2 10 44 30 9 5 0 0
25 F5 686 1 27 32 197 224 78 94 4 29 6.10 0 0 4 5 29 33 11 14 1 4
26 PHP 664 1 20 8 69 206 98 218 2 42 6.80 0 0 3 1 10 31 15 33 0 6
27 Novell 620 1 7 24 8 145 139 47 113 136 6.90 0 1 4 1 23 22 8 18 0 22
28 Imagemagick 619 2 2 341 51 120 96 7 6.00 0 0 0 0 55 8 19 16 0 1
29 Wireshark 618 23 33 184 300 8 48 3 19 5.80 0 0 4 5 30 49 1 8 0 3
30 Huawei 609 4 49 17 85 216 72 127 8 31 6.30 0 1 8 3 14 35 12 21 1 5
31 Vmware 582 6 41 31 136 102 95 114 4 53 6.30 0 1 7 5 23 18 16 20 1 9
32 Intel 556 8 145 17 252 47 15 65 1 6 5.00 0 1 26 3 45 8 3 12 0 1
33 Symantec 538 4 37 28 117 92 59 108 9 84 6.60 0 1 7 5 22 17 11 20 2 16
34 Mcafee 520 7 44 51 179 74 66 73 4 22 5.80 0 1 8 10 34 14 13 14 1 4
35 Freebsd 475 7 61 11 79 88 37 154 3 35 6.40 0 1 13 2 17 19 8 32 1 7
36 Moodle 447 7 34 202 109 63 24 8 5.70 0 0 2 8 45 24 14 5 0 2
37 Juniper 446 3 34 34 82 110 43 105 6 29 6.30 0 1 8 8 18 25 10 24 1 7
38 Joomla 439 2 7 98 92 63 169 8 6.70 0 0 0 2 22 21 14 38 0 2
39 Dell 431 2 37 31 90 105 39 71 4 52 6.30 0 0 9 7 21 24 9 16 1 12
40 Cpanel 421 6 49 56 139 64 53 24 4 26 5.50 0 1 12 13 33 15 13 6 1 6
41 XEN 404 22 54 7 160 33 60 54 4 10 5.50 0 5 13 2 40 8 15 13 1 2
42 Ffmpeg 402 1 2 114 23 115 74 73 7.10 0 0 0 0 28 6 29 18 0 18
43 Fortinet 396 12 34 158 61 50 50 1 30 6.00 0 0 3 9 40 15 13 13 0 8
44 EMC 395 1 20 29 89 54 49 69 13 71 6.80 0 0 5 7 23 14 12 17 3 18
45 Atlassian 387 2 55 155 89 39 25 22 5.80 0 0 1 14 40 23 10 6 0 6
46 Wordpress 382 8 29 140 86 51 55 1 12 6.00 0 0 2 8 37 23 13 14 0 3
47 Zohocorp 375 16 104 63 56 110 1 25 6.60 0 0 0 4 28 17 15 29 0 7
48 Qemu 369 17 149 10 85 27 19 52 1 9 4.80 0 5 40 3 23 7 5 14 0 2
49 Broadcom 362 1 13 6 65 82 43 86 2 64 7.00 0 0 4 2 18 23 12 24 1 18
50 Drupal 352 13 50 108 80 46 45 3 7 5.80 0 0 4 14 31 23 13 13 1 2

Vendor(s) with highest weighted average (8.20): Adobe  

Weighted average = SUM((Cvss Range (e.g: 2 for range 1-2 )) * (Number of vulnerabilities in that range)) / (Total number of vulnerabilities)
CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.