Skip to content

Instantly share code, notes, and snippets.

Embed
What would you like to do?
why_so_many_vuln.md
cna total_vul total_company most_common_company total_product most_common_product
CybersecurityCOE@eaton.com 6 1 eaton(6) 3 intelligent_power_manager(6)-intelligent_power_protector(5)-intelligent_power_manager_virtual_appliance(5)
Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp 25 2 mitsubishielectric(20)-mitsubishi(5) 410 gx_works2(5)-r08psfcpu_firmware(5)-r08psfcpu(5)-r32psfcpu(5)-r08sfcpu_firmware(5)
PSIRT-CNA@flexerasoftware.com 1 1 flexera(1) 1 flexnet_inventory_agent_and_beacon(1)
PSIRT@sonicwall.com 31 1 sonicwall(31) 94 sma_410_firmware(14)-sma_210_firmware(14)-sma_400_firmware(13)-sma_200_firmware(13)-sma_500v(12)
SecurityResponse@netmotionsoftware.com 2 1 netmotionsoftware(2) 1 mobility(2)
VulnerabilityReporting@secomea.com 3 1 secomea(3) 4 sitemanager_firmware(2)-sitemanager(2)-gatemanager_8250_firmware(1)-gatemanager_8250(1)
alibaba-cna@list.alibaba-inc.com 1 1 alibaba(1) 1 druid(1)
audit@patchstack.com 37 23 stylemixthemes(7)-wpchill(3)-yithemes(2)-codecabin(2)-ciphercoin(2) 23 ulisting(7)-download_monitor(3)-yith_maintenance_mode(2)-wp_google_maps(2)-contact_form_7_database_addon_-_cfdb7(2)
browser-security@yandex-team.ru 1 1 yandex(1) 1 clickhouse(1)
cert@cert.org 8 3 fatpipeinc(6)-gnu(1)-checkbox(1) 8 ipvpn(6)-warp_firmware(6)-mpvpn_firmware(6)-ipvpn_firmware(6)-warp(5)
chrome-cve-admin@google.com 339 6 google(320)-fedoraproject(270)-debian(144)-microsoft(52)-linux(8) 16 chrome(319)-fedora(270)-debian_linux(144)-edge_chromium(41)-edge(22)
cna@cloudflare.com 7 1 cloudflare(7) 1 octorpki(7)
cna@cyber.gov.il 8 7 emuse_-eservices\/_envoice_project(2)-synerion(1)-synel(1)-cybonet(1)-pineapp(1) 7 mail_secure(2)-emuse_-eservices\/_envoice(2)-timenet(1)-eharmonynew(1)-synel_reports(1)
cna@mongodb.com 13 3 mongodb(13)-quarkus(1)-microsoft(1) 10 mongodb(6)-libmongocrypt(1)-java_driver(1)-quarkus(1)-go_driver(1)
cna@sap.com 200 2 sap(198)-kyma-project(2) 77 3d_visual_enterprise_viewer(45)-netweaver_as_abap(22)-business_one(14)-netweaver_abap(11)-netweaver_application_server_java(9)
contact@wpscan.com 865 547 themeum(14)-ays-pro(12)-tipsandtricks-hq(12)-10web(9)-webnus(9) 686 tutor_lms(11)-modern_events_calendar_lite(9)-photo_gallery(7)-website_builder(7)-the_plus_addons_for_elementor(6)
cve-assign@fb.com 20 4 facebook(12)-whatsapp(6)-oculus(1)-ray-ban(1) 21 whatsapp(6)-whatsapp_business(4)-hermes(3)-hhvm(2)-zstandard(2)
cve-assignments@hackerone.com 113 24 fedoraproject(18)-netapp(16)-oracle(14)-haxx(13)-pulsesecure(13) 126 fedora(18)-pulse_connect_secure(12)-concrete_cms(11)-avalanche(10)-curl(9)
cve-coordination@incibe.es 20 8 tcman(5)-sitel-sa(4)-artica(3)-zivautomation(2)-circutor(2) 14 gim(5)-integria_ims(3)-4cct-ea6-334126bf_firmware(2)-4cct-ea6-334126bf(2)-cap\/prx_firmware(2)
cve-notifications-us@f-secure.com 21 6 f-secure(17)-apple(10)-microsoft(9)-amazon(4)-opengroup(1) 20 linux_security(10)-macos(10)-windows(9)-elements_endpoint_protection(8)-atlant(8)
cve-requests@bitdefender.com 11 2 bitdefender(11)-microsoft(1) 5 gravityzone(7)-endpoint_security_tools(6)-total_security(2)-gravityzone_business_security(1)-windows(1)
cve@cert.org.tw 168 41 asus(38)-qsan(31)-ecoa(13)-hgiga(6)-learningdigital(6) 250 storage_manager(23)-asmb8-ikvm(18)-asmb8-ikvm_firmware(18)-z10pr-d16(18)-z10pe-d16_ws(18)
cve@checkpoint.com 7 3 checkpoint(5)-amazon(2)-microsoft(1) 9 kindle_firmware(2)-kindle(2)-identity_agent(1)-ssl_network_extender(1)-mobile_access_portal_agent(1)
cve@gitlab.com 185 8 gitlab(160)-wireshark(22)-fedoraproject(13)-debian(6)-oracle(5) 12 gitlab(159)-wireshark(22)-fedora(13)-debian_linux(6)-zfs_storage_appliance(3)
cve@mitre.org 5343 1701 netgear(242)-fedoraproject(234)-debian(193)-apple(143)-gpac(109) 4468 fedora(234)-debian_linux(192)-macos(121)-rbr850(109)-rbr850_firmware(109)
cve@navercorp.com 3 2 naver(2)-navercorp(1) 3 comic_viewer(1)-toolbar(1)-whale(1)
cve@rapid7.com 21 7 akaunting(6)-rapid7(5)-akkadianlabs(3)-automox(2)-pimcore(2) 11 akaunting(6)-provisioning_manager(3)-ova_appliance(3)-automox(2)-nexpose(2)
cve@usom.gov.tr 7 4 krontech(4)-tubitak(1)-pardus(1)-ipack(1) 4 single_connect(4)-pardus_software_center(1)-liderahenk(1)-scada_automation(1)
cve_disclosure@tech.gov.sg 3 2 dlink(2)-tightvnc(1) 3 dwr-932c(2)-dwr-932c_e1_firmware(2)-tightvnc(1)
cybersecurity@ch.abb.com 8 2 abb(8)-busch-jaeger(1) 21 spiet800(3)-spiet800_firmware(3)-pni800_firmware(3)-pni800(3)-mybusch-jaeger(1)
cybersecurity@dahuatech.com 3 1 dahuasecurity(3) 94 ipc-hx5xxx(3)-ipc-hx3xxx_firmware(3)-ipc-hx5xxx_firmware(3)-ipc-hx3xxx(3)-sd1a1_firmware(2)
cybersecurity@hitachi-powergrids.com 3 3 hitachiabb-powergrids(2)-abb(1)-hitachienergy(1) 5 sdm600(1)-sdm600_firmware(1)-esoms(1)-retail_operations(1)-counterparty_settlement_and_billing(1)
cybersecurity@hitachienergy.com 10 3 hitachi(6)-hitachienergy(3)-abb(1) 19 linkone(4)-relion_650(2)-relion_670_firmware(2)-relion_650_firmware(2)-relion_sam600-io_firmware(2)
cybersecurity@schneider-electric.com 123 2 schneider-electric(113)-se(2) 382 evlink_city_evc1s7p4(18)-evlink_smart_wallbox_evb1a_firmware(18)-evlink_city_evc1s7p4_firmware(18)-evlink_parking_evw2_firmware(18)-evlink_smart_wallbox_evb1a(18)
disclose@cybersecurityworks.com 2 2 zohocorp(1)-microsoft(1) 2 zoho_crm_lead_magnet(1)-clarity(1)
disclosure@synopsys.com 7 5 nagios(2)-goautodial(2)-emqx(1)-octavolabs(1)-nagvis(1) 6 nagios_xi(2)-goautodial_api(2)-goautodial(2)-emq_x_broker(1)-vernemq(1)
disclosures@gallagher.com 13 1 gallagher(13) 3 command_centre(11)-command_centre_mobile_client(1)-command_centre_mobile_connect(1)
dl_cve@linecorp.com 5 1 linecorp(5) 2 line(4)-central_dogma(1)
f5sirt@f5.com 82 5 f5(82)-openresty(1)-oracle(1)-fedoraproject(1)-netapp(1) 32 big-ip_application_security_manager(57)-big-ip_access_policy_manager(53)-big-ip_advanced_web_application_firewall(47)-big-ip_domain_name_system(45)-big-ip_advanced_firewall_manager(45)
hp-security-alert@hp.com 14 2 hp(9)-samsung(1) 446 futuresmart_4(3)-futuresmart_5(3)-laserjet_pro_j8h60a_firmware(2)-laserjet_pro_j8h61a_firmware(2)-laserjet_pro_j8h60a(2)
hsrc@hikvision.com 1 1 hikvision(1) 512 ds-2df6a236x-ael\(t3\)(1)-ds-2td1117-2\/pa_firmware(1)-ds-2cd2127g2-\(-su\)(1)-ds-2cd3686g2-izs_firmware(1)-ds-2cd3023g2-iu_firmware(1)
ics-cert@hq.dhs.gov 275 43 deltaww(33)-advantech(25)-fatek(22)-siemens(19)-auvesy(17) 306 versiondog(17)-winproladder(13)-ir615_firmware(13)-ir615(13)-vigilant_mastermed(12)
iletisim@usom.gov.tr 2 1 meddata(2) 1 hbys(2)
info@appcheck-ng.com 3 3 duplicate_post_project(1)-wpo365(1)-kentico(1) 3 duplicate_post(1)-wordpress_\+azure_ad\/_microsoft_office_365(1)-xperience(1)
info@cert.vde.com 80 13 weidmueller(13)-geutebrueck(12)-pepperl-fuchs(11)-phoenixcontact(11)-wago(10) 373 ie-wl-vl-ap-br-cl-eu(12)-ie-wlt-bl-ap-cl-eu_firmware(12)-ie-wlt-bl-ap-cl-eu(12)-ie-wlt-bl-ap-cl-us_firmware(12)-ie-wl-bl-ap-cl-eu(12)
infosec@edk2.groups.io 6 1 tianocore(6) 2 edk2(5)-edk_ii(1)
jenkinsci-cert@googlegroups.com 103 2 jenkins(103)-microsoft(2) 57 jenkins(30)-config_file_provider(4)-xebialabs_xl_deploy(4)-team_foundation_server(3)-scriptler(3)
mobile.security@samsung.com 198 5 google(129)-samsung(109)-linux(5)-mediatek(1)-qualcomm(1) 72 android(129)-exynos_9830(15)-exynos(14)-notes(11)-internet(10)
openssl-security@openssl.org 9 13 openssl(9)-oracle(7)-tenable(6)-debian(6)-netapp(6) 202 openssl(9)-mysql_server(6)-debian_linux(6)-zfs_storage_appliance_kit(5)-graalvm(5)
prodsec@nozominetworks.com 3 1 nozominetworks(2) 2 guardian(2)-central_management_control(2)
product-cna@github.com 12 1 github(11) 2 enterprise_server(8)-github(3)
product-security@apple.com 322 4 apple(322)-fedoraproject(9)-webkitgtk(5)-debian(1) 18 macos(261)-iphone_os(222)-mac_os_x(183)-ipados(159)-watchos(151)
product-security@axis.com 4 1 axis(4) 5 axis_os_2018(3)-axis_os(3)-axis_os_2020(3)-axis_os_2016(3)-device_manager(1)
productcert@siemens.com 258 3 siemens(250)-mendix(8)-debian(1) 638 teamcenter_visualization(68)-jt2go(65)-jt_utilities(24)-jt_open_toolkit(21)-solid_edge(19)
productsecurity@jci.com 12 1 johnsoncontrols(12) 14 exacqvision_web_service(3)-metasys(1)-exacqvision_enterprise_manager(1)-c-cure_9000(1)-c-cure_9000_firmware(1)
psirt-info@cyber.jp.nec.com 1 1 nec(1) 9 univerge_dt930(1)-univerge_dt820(1)-univerge_dt820_firmware(1)-univerge_dt900_data_maintenance_tool(1)-univerge_dt830(1)
psirt@adobe.com 473 7 adobe(449)-microsoft(328)-apple(166)-magento(24)-linux(3) 57 windows(328)-macos(166)-acrobat_dc(117)-acrobat_reader_dc(117)-acrobat_reader(96)
psirt@amd.com 23 8 amd(23)-intel(2)-xen(2)-broadcom(2)-arm(2) 240 epyc_73f3(18)-epyc_7543p(18)-epyc_7313(18)-epyc_7513(18)-epyc_75f3(18)
psirt@arista.com 12 1 arista(12) 4 metamako_operating_system(6)-7130(6)-eos(5)-terminattr(1)
psirt@autodesk.com 28 1 autodesk(28) 17 design_review(8)-fbx_review(7)-autocad_mechanical(6)-autocad_map_3d(6)-autocad_mep(6)
psirt@bosch.com 19 1 bosch(19) 67 cpp7_firmware(6)-cpp6_firmware(6)-cpp7.3_firmware(6)-cpp7.3(6)-cpp6(6)
psirt@cisco.com 587 9 cisco(582)-snort(6)-clamav(3)-linux(3)-apple(2) 1846 rv110w(74)-rv130w(74)-rv130w_firmware(74)-rv110w_firmware(74)-rv215w_wireless-n_vpn_router(60)
psirt@esri.com 22 2 esri(21)-arcgis(1) 10 arcgis_server(10)-arcgis(5)-arcgis_pro(3)-arcreader(3)-arcgis_desktop(3)
psirt@forcepoint.com 1 1 forcepoint(1) 1 next_generation_firewall(1)
psirt@forgerock.com 1 0 0
psirt@fortinet.com 115 2 fortinet(115)-microsoft(2) 44 fortiweb(28)-fortios(13)-fortimanager(12)-fortimail(11)-fortiportal(11)
psirt@hcl.com 2 1 hcltechsw(2) 2 hcl_commerce(1)-connections(1)
psirt@huawei.com 389 1 huawei(389) 124 harmonyos(184)-emui(170)-magic_ui(161)-manageone(10)-usg9500(9)
psirt@lenovo.com 34 6 lenovo(22)-binatoneglobal(8)-motorola(3)-microsoft(2)-linux(1) 633 cn40(8)-connect_view_65(8)-lux_65(8)-lux_85_connect(8)-comfort_85_connect_firmware(8)
psirt@mcafee.com 50 2 mcafee(50)-microsoft(1) 20 endpoint_security(7)-total_protection(6)-database_security(6)-data_loss_prevention_endpoint(5)-epolicy_orchestrator(5)
psirt@mirantis.com 3 2 mirantis(3)-linux(1) 3 lens(2)-mirantis_container_runtime(1)-linux_kernel(1)
psirt@nvidia.com 113 9 nvidia(112)-microsoft(22)-redhat(18)-vmware(18)-citrix(18) 158 jetson_linux(35)-jetson_tx2(33)-jetson_xavier_nx(33)-jetson_tx1(30)-jetson_tx2_nx(30)
psirt@paloaltonetworks.com 37 6 paloaltonetworks(34)-linux(2)-fedoraproject(2)-microsoft(2)-debian(1) 26 pan-os(21)-cortex_xsoar(4)-prisma_cloud(3)-fedora(2)-linux_kernel(2)
psirt@sick.de 4 1 sick(4) 3 sopas_engineering_tool(3)-visionary-s_cx(1)-visionary-s_cx_firmware(1)
psirt@solarwinds.com 33 2 solarwinds(33)-microsoft(7) 13 orion_platform(14)-windows(6)-serv-u(5)-kiwi_syslog_server(5)-patch_manager(2)
psirt@thalesgroup.com 4 2 thalesgroup(4)-microsoft(2) 4 sentinel_protection_installer(2)-windows(2)-safenet_windows_logon_agent(1)-safenet_authentication_service_remote_desktop_gateway(1)
psirt@us.ibm.com 430 9 ibm(424)-linux(127)-microsoft(93)-oracle(35)-hp(21) 193 linux_kernel(127)-windows(93)-aix(81)-solaris(35)-rational_engineering_lifecycle_manager(25)
psirt@zte.com.cn 30 1 zte(30) 67 mf971r_firmware(7)-mf971r(7)-zxhn_h168n(3)-zxhn_h168n_firmware(3)-zxin10_cms(2)
reefs@jfrog.com 14 2 fedoraproject(14)-busybox(14) 2 fedora(14)-busybox(14)
report@snyk.io 164 149 fedoraproject(5)-netapp(3)-totaljs(3)-oracle(2)-python(2) 173 fedora(5)-debian_linux(2)-pimcore(2)-total.js(2)-go-proxyproto(2)
responsible-disclosure@pingidentity.com 1 1 pingidentity(1) 1 pingfederate(1)
responsibledisclosure@mattermost.com 9 1 mattermost(9) 3 mattermost(5)-mattermost_server(2)-mattermost_boards(2)
secalert@redhat.com 289 82 redhat(137)-fedoraproject(100)-debian(60)-linux(26)-privoxy(18) 225 fedora(100)-enterprise_linux(91)-debian_linux(60)-linux_kernel(26)-privoxy(18)
secalert_us@oracle.com 589 10 oracle(589)-netapp(173)-fedoraproject(71)-debian(16)-mcafee(2) 208 oncommand_insight(171)-snapcenter(128)-mysql(124)-oncommand_workflow_automation(87)-fedora(71)
secteam@freebsd.org 7 1 freebsd(7) 1 freebsd(7)
secure@blackberry.com 9 1 blackberry(9) 6 unified_endpoint_management(3)-protect(3)-qnx_software_development_platform(2)-workspaces_server(1)-qnx_os_for_medical(1)
secure@dell.com 151 2 dell(151)-microsoft(1) 1256 emc_powerscale_onefs(20)-latitude_9410(13)-latitude_9410_firmware(13)-latitude_9510(13)-latitude_9510_firmware(13)
secure@intel.com 164 9 intel(153)-microsoft(12)-netapp(10)-fedoraproject(3)-debian(2) 2559 proset_ac_8265_firmware(23)-proset_wi-fi_6_ax201(23)-killer_wi-fi_6e_ax1675(23)-proset_ac_9560(23)-proset_ac_3168_firmware(23)
secure@microsoft.com 870 5 microsoft(869)-fedoraproject(4)-google(2)-azure-iot-cli-extension(1)-apple(1) 132 windows_server_2016(493)-windows_10(492)-windows_server_2019(470)-windows_server_2012(334)-windows_8.1(302)
secure@symantec.com 3 2 symantec(1)-broadcom(1) 16 security_analytics(1)-symantec_advanced_secure_gateway_s200-30_firmware(1)-symantec_advanced_secure_gateway_s200-40(1)-symantec_proxysg(1)-symantec_advanced_secure_gateway_500-10(1)
securities@openeuler.org 1 1 openeuler(1) 1 isula-build(1)
security-advisories@github.com 1064 387 google(202)-fedoraproject(109)-debian(70)-nextcloud(48)-oracle(37) 548 tensorflow(200)-fedora(109)-debian_linux(70)-xstream(27)-business_activity_monitoring(25)
security-alert@hpe.com 174 7 arubanetworks(111)-hpe(43)-hp(19)-siemens(14)-microsoft(4) 185 clearpass_policy_manager(39)-airwave(24)-cloudline_cl5200_gen9_server_firmware(16)-cloudline_cl5200_gen9_server(16)-cloudline_cl5800_gen10_server(16)
security-alert@netapp.com 20 2 netapp(20)-pivotal_software(1) 11 cloud_manager(6)-e-series_santricity_os_controller(4)-clustered_data_ontap(3)-data_ontap(2)-ontap_system_manager(2)
security-alert@sophos.com 8 2 sophos(8)-microsoft(1) 12 home(1)-intercept_x(1)-connect(1)-windows(1)-intercept_x_for_server(1)
security-officer@isc.org 6 5 isc(6)-fedoraproject(5)-debian(5)-netapp(2)-oracle(1) 26 fedora(5)-bind(5)-debian_linux(5)-h300s(2)-h700s(2)
security-report@netflix.com 2 1 netflix(2) 2 hollow(1)-priam(1)
security.cna@qualcomm.com 168 1 qualcomm(167) 1334 wcd9380(158)-wcd9380_firmware(158)-wcd9370_firmware(156)-wcd9370(156)-wcd9375(154)
security@acronis.com 10 3 acronis(10)-microsoft(9)-linux(4) 6 windows(9)-cyber_protect(7)-cyber_protect_home_office(4)-linux_kernel(4)-agent(3)
security@android.com 571 4 google(570)-mediatek(47)-debian(3)-fedoraproject(1) 113 android(570)-mt6885(47)-mt6873(47)-mt6889(46)-mt6877(44)
security@apache.org 176 16 apache(176)-debian(28)-oracle(27)-fedoraproject(19)-netapp(17) 330 debian_linux(28)-fedora(19)-http_server(14)-traffic_server(12)-primavera_unifier(12)
security@atlassian.com 58 1 atlassian(52) 12 jira(35)-data_center(33)-jira_software_data_center(11)-confluence(3)-jira_service_management(3)
security@craftersoftware.com 7 1 craftercms(7) 1 crafter_cms(7)
security@debian.org 1 0 0
security@deepsurface.com 1 2 erlang(1)-microsoft(1) 2 windows(1)-erlang\/otp(1)
security@devolutions.net 1 1 devolutions(1) 1 remote_desktop_manager(1)
security@documentfoundation.org 4 3 libreoffice(3)-debian(2)-collaboraoffice(1) 3 libreoffice(3)-debian_linux(2)-online(1)
security@eclipse.org 27 7 eclipse(27)-netapp(5)-oracle(4)-apache(4)-fedoraproject(2) 43 jetty(6)-theia(5)-mosquitto(5)-e-series_santricity_os_controller(4)-e-series_santricity_web_services(4)
security@elastic.co 45 16 elastic(19)-fedoraproject(8)-djvulibre_project(5)-podofo_project(4)-redhat(4) 22 elasticsearch(8)-fedora(8)-djvulibre(5)-kibana(4)-enterprise_linux(4)
security@eset.com 2 1 eset(2) 10 endpoint_antivirus(2)-endpoint_security(2)-cyber_security(1)-server_security(1)-mail_security(1)
security@fidelissecurity.com 4 1 fidelissecurity(4) 2 network(4)-deception(4)
security@google.com 22 8 google(14)-dart(3)-linux(3)-netapp(2)-debian(2) 39 asylo(4)-dart_software_development_kit(3)-linux_kernel(3)-debian_linux(2)-libjxl(2)
security@huntr.dev 189 77 fedoraproject(23)-vim(20)-firefly-iii(12)-showdoc(12)-bookstackapp(11) 78 fedora(23)-vim(20)-firefly_iii(12)-showdoc(12)-bookstack(11)
security@jfrog.com 10 6 oracle(2)-netty(2)-quarkus(2)-jfrog(1)-h2database(1) 11 banking_digital_experience(2)-communications_diameter_signaling_router(2)-commerce_guided_search(2)-peoplesoft_enterprise_peopletools(2)-communications_cloud_native_core_binding_support_function(2)
security@joomla.org 24 1 joomla(24) 1 joomla\!(24)
security@kubernetes.io 7 2 kubernetes(7)-netapp(1) 4 kubernetes(5)-java(1)-trident(1)-ingress-nginx(1)
security@m-files.com 3 1 m-files(3) 2 m-files_server(3)-m-files_web(1)
security@mautic.org 6 1 acquia(6) 1 mautic(6)
security@microfocus.com 34 1 microfocus(34) 18 access_manager(7)-application_automation_tools(4)-application_performance_management(3)-arcsight_enterprise_security_manager(3)-netiq_advanced_authentication(2)
security@mozilla.org 133 6 mozilla(133)-debian(21)-microsoft(5)-google(3)-linux(2) 14 firefox(117)-thunderbird(72)-firefox_esr(58)-debian_linux(21)-windows(4)
security@octopus.com 9 3 octopus(9)-linux(2)-microsoft(2) 7 tentacle(3)-server(3)-windows(2)-linux_kernel(2)-octopus_deploy(1)
security@openvpn.net 4 2 openvpn(4)-microsoft(1) 4 openvpn(2)-windows(1)-connect(1)-openvpn_access_server(1)
security@opera.com 1 1 opera(1) 1 opera_mini(1)
security@oppo.com 2 2 oppo(2)-google(1) 37 oppo_x_2021(1)-oppo_a5_2020(1)-oppo_a73_5g(1)-oppo_find_x3_pro(1)-oppo_a53(1)
security@otrs.com 17 1 otrs(17) 7 otrs(13)-survey(1)-cis_in_customer_frontend(1)-itsmconfigurationmanagement(1)-otrscisincustomerfrontend(1)
security@pega.com 3 1 pega(3) 1 infinity(3)
security@php.net 6 6 php(6)-netapp(5)-debian(2)-oracle(1)-fedoraproject(1) 6 php(6)-clustered_data_ontap(5)-debian_linux(2)-communications_diameter_signaling_router(1)-fedora(1)
security@puppet.com 9 2 puppet(9)-fedoraproject(2) 9 puppet_enterprise(7)-puppet(4)-puppetdb(2)-puppet_agent(2)-fedora(2)
security@qnap.com 50 2 qnap(48)-roonlabs(1) 66 qts(16)-quts_hero(13)-nas(8)-qutscloud(8)-qvr(6)
security@replicated.com 1 1 replicated(1) 1 replicated_classic(1)
security@salesforce.com 5 4 salesforce(4)-linux(1)-microsoft(1)-tableau(1) 4 mule(4)-linux_kernel(1)-windows(1)-tableau_server(1)
security@snowsoftware.com 2 1 snowsoftware(2) 2 snow_inventory_java_scanner(1)-snow_inventory_agent(1)
security@suse.com 18 7 opensuse(9)-suse(8)-rancher(4)-linuxfoundation(2)-saltstack(1) 23 factory(6)-linux_enterprise_server(5)-leap(5)-rancher(4)-manager_server(2)
security@synology.com 38 1 synology(38) 15 diskstation_manager(23)-diskstation_manager_unified_controller(13)-vs960hd(8)-uc3200(8)-skynas_firmware(8)
security@tcpdump.org 1 1 tcpdump(1) 1 tcpslice(1)
security@teradici.com 10 1 teradici(10) 8 pcoip_graphics_agent(2)-pcoip_soft_client(2)-pcoip_client(2)-pcoip_standard_agent(1)-pcoip_connection_manager_and_security_gateway(1)
security@tibco.com 37 2 tibco(35)-microsoft(8) 31 windows(8)-ftl(5)-spotfire_server(4)-eftl(4)-administrator(3)
security@trendmicro.com 78 7 trendmicro(78)-microsoft(48)-novell(1)-emc(1)-linux(1) 46 windows(48)-apex_one(45)-worry-free_business_security(36)-officescan(26)-worry-free_business_security_services(12)
security@ubuntu.com 30 7 canonical(25)-linux(4)-oracle(1)-debian(1)-bluez(1) 10 ubuntu_linux(18)-apport(7)-linux_kernel(4)-multipass(2)-openjdk(1)
security@vaadin.com 14 1 vaadin(14) 6 vaadin(13)-flow(7)-designer(1)-flow-server(1)-vaadin-checkbox-flow(1)
security@vmware.com 93 13 vmware(79)-microsoft(6)-linux(5)-cloudfoundry(4)-fedoraproject(2) 72 cloud_foundation(41)-vcenter_server(26)-vrealize_suite_lifecycle_manager(12)-vrealize_operations_manager(8)-windows(6)
security@wordfence.com 158 139 profilepress(4)-wp-upload-restriction_project(3)-brizy(3)-wpdownloadmanager(2)-ninjaforms(2) 185 profilepress(4)-wp-upload-restriction(3)-brizy-page_builder(3)-wordpress_download_manager(2)-ninja_forms(2)
security@xen.org 29 4 xen(25)-fedoraproject(16)-debian(15)-linux(4) 4 xen(25)-fedora(16)-debian_linux(15)-linux_kernel(4)
security@zoom.us 20 6 zoom(17)-microsoft(4)-keybase(3)-google(3)-linux(3) 39 meetings(7)-zoom_on-premise_recording_connector(4)-zoom_on-premise_virtual_room_connector_load_balancer(4)-zoom_on-premise_virtual_room_connector(4)-zoom_on-premise_meeting_connector_mmr(4)
security@zyxel.com.tw 9 1 zyxel(9) 118 gs1900-8_firmware(3)-gs1900-16_firmware(3)-gs1900-24hpv2_firmware(3)-gs1900-48hpv2(3)-gs1900-16(3)
securityalerts@avaya.com 8 1 avaya(8) 4 aura_utility_services(3)-aura_appliance_virtualization_platform(2)-aura_experience_portal(2)-aura_device_services(1)
sep@nlnetlabs.nl 4 1 nlnetlabs(4) 1 routinator(4)
sirt@brocade.com 5 1 broadcom(5) 1 fabric_operating_system(5)
sirt@juniper.net 134 1 juniper(134) 242 junos(112)-junos_os_evolved(29)-srx4600(16)-srx1500(16)-mx960(15)
talos-cna@cisco.com 270 35 reolink(73)-advantech(37)-debian(32)-gpac(29)-lantronix(24) 49 rlc-410w_firmware(73)-rlc-410w(73)-r-seenet(33)-debian_linux(32)-gpac(29)
vuln@ca.com 1 2 broadcom(1)-microsoft(1) 4 windows_server_2012(1)-windows_server_2019(1)-ca_network_flow_analysis(1)-windows_server_2016(1)
vuln@krcert.or.kr 15 12 microsoft(8)-tobesoft(3)-bandisoft(2)-unidocs(1)-dreamsecurity(1) 14 windows(8)-nexacro(3)-ark_library(2)-ezpdfreader(1)-magicline4nx.exe(1)
vulnerabilities@zephyrproject.org 14 1 zephyrproject(14) 1 zephyr(14)
vulnerability@kaspersky.com 3 2 kaspersky(3)-microsoft(1) 4 internet_security(1)-password_manager(1)-windows(1)-endpoint_security(1)
vulnerability@ncsc.ch 18 9 businessdnasolutions(10)-wpcloudplugins(4)-micron(1)-skhynix(1)-samsung(1) 12 topease(11)-ddr4_sdram(1)-lddr4(1)-lddr4_firmware(1)-ddr4_sdram_firmware(1)
vulnerabilitylab@whitesourcesoftware.com 79 43 open-emr(7)-opennms(7)-dolibarr(4)-tuzitio(4)-darwin(4) 45 openemr(7)-meridian(7)-horizon(6)-dolibarr(4)-camaleon_cms(4)
vulnreport@tenable.com 111 26 trendnet(17)-netgear(13)-zohocorp(11)-gryphonconnect(10)-racom(9) 187 tew-827dru_firmware(17)-tew-827dru(17)-gryphon_tower(10)-gryphon_tower_firmware(10)-m\!dge(9)
vultures@jpcert.or.jp 256 95 cybozu(47)-elecom(24)-nec(15)-ec-cube(12)-weseek(11) 847 garoon(23)-remote_service_manager(13)-movable_type(12)-growi(11)-office(11)
zdi-disclosures@trendmicro.com 372 22 bentley(78)-foxitsoftware(74)-microsoft(74)-opentext(36)-parallels(30)
@imfht
Copy link
Author

imfht commented Feb 22, 2022

import re
from collections import Counter

import pandas as pd
import tabulate
from pandas.io.json import json_normalize

data = json_normalize(pd.read_json('./nvdcve-1.1-2021.json')['CVE_Items'])
groups = data.groupby('cve.CVE_data_meta.ASSIGNER')

output = []

def raw_node2company(nodes):
assigner_companys = []
assigner_products = []
for cve_node in list(nodes['configurations.nodes']):
node_companys = set()
node_products = set()

    for j in re.findall('cpe:2\.3:.:(.*?):(.*?):.*?', str(cve_node)):
        company = j[0]
        product = j[1]
        node_companys.add(company)
        node_products.add(product)
    for i in node_companys:
        assigner_companys.append(i)
    for i in node_products:
        assigner_products.append(i)
return Counter(assigner_companys), Counter(assigner_products)

def raw_node2product():
pass

line = ['cna', 'total_vul', 'total_company', 'most_common_company', 'total_product', 'most_common_product']
data = []
for name, group in groups:
cnt = len(group)
output.append([name, cnt])
total = len(group)
company_info, product_info = raw_node2company(group)
total_company = len(company_info)
total_product = len(product_info)
company_info = '-'.join([f'{i[0]}({i[1]})' for i in company_info.most_common(5)])
product_info = '-'.join([f'{i[0]}({i[1]})' for i in product_info.most_common(5)])

data.append([name, total, total_company, company_info, total_product, product_info])

print(tabulate.tabulate(tabular_data=data, headers=line,tablefmt='github'))

pd_data = pd.DataFrame.from_records(data, columns=line)

if name == 'main':

pd_data.to_excel('123.xls')

if name == 'main':
pass

Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment