| cna | total_vul | total_company | most_common_company | total_product | most_common_product |
|---|---|---|---|---|---|
| CybersecurityCOE@eaton.com | 6 | 1 | eaton(6) | 3 | intelligent_power_manager(6)-intelligent_power_protector(5)-intelligent_power_manager_virtual_appliance(5) |
| Mitsubishielectric.Psirt@yd.MitsubishiElectric.co.jp | 25 | 2 | mitsubishielectric(20)-mitsubishi(5) | 410 | gx_works2(5)-r08psfcpu_firmware(5)-r08psfcpu(5)-r32psfcpu(5)-r08sfcpu_firmware(5) |
| PSIRT-CNA@flexerasoftware.com | 1 | 1 | flexera(1) | 1 | flexnet_inventory_agent_and_beacon(1) |
| PSIRT@sonicwall.com | 31 | 1 | sonicwall(31) | 94 | sma_410_firmware(14)-sma_210_firmware(14)-sma_400_firmware(13)-sma_200_firmware(13)-sma_500v(12) |
| SecurityResponse@netmotionsoftware.com | 2 | 1 | netmotionsoftware(2) | 1 | mobility(2) |
| VulnerabilityReporting@secomea.com | 3 | 1 | secomea(3) | 4 | sitemanager_firmware(2)-sitemanager(2)-gatemanager_8250_firmware(1)-gatemanager_8250(1) |
| alibaba-cna@list.alibaba-inc.com | 1 | 1 | alibaba(1) | 1 | druid(1) |
| audit@patchstack.com | 37 | 23 | stylemixthemes(7)-wpchill(3)-yithemes(2)-codecabin(2)-ciphercoin(2) | 23 | ulisting(7)-download_monitor(3)-yith_maintenance_mode(2)-wp_google_maps(2)-contact_form_7_database_addon_-_cfdb7(2) |
| browser-security@yandex-team.ru | 1 | 1 | yandex(1) | 1 | clickhouse(1) |
| cert@cert.org | 8 | 3 | fatpipeinc(6)-gnu(1)-checkbox(1) | 8 | ipvpn(6)-warp_firmware(6)-mpvpn_firmware(6)-ipvpn_firmware(6)-warp(5) |
| chrome-cve-admin@google.com | 339 | 6 | google(320)-fedoraproject(270)-debian(144)-microsoft(52)-linux(8) | 16 | chrome(319)-fedora(270)-debian_linux(144)-edge_chromium(41)-edge(22) |
| cna@cloudflare.com | 7 | 1 | cloudflare(7) | 1 | octorpki(7) |
| cna@cyber.gov.il | 8 | 7 | emuse_-eservices\/_envoice_project(2)-synerion(1)-synel(1)-cybonet(1)-pineapp(1) | 7 | mail_secure(2)-emuse_-eservices\/_envoice(2)-timenet(1)-eharmonynew(1)-synel_reports(1) |
| cna@mongodb.com | 13 | 3 | mongodb(13)-quarkus(1)-microsoft(1) | 10 | mongodb(6)-libmongocrypt(1)-java_driver(1)-quarkus(1)-go_driver(1) |
| cna@sap.com | 200 | 2 | sap(198)-kyma-project(2) | 77 | 3d_visual_enterprise_viewer(45)-netweaver_as_abap(22)-business_one(14)-netweaver_abap(11)-netweaver_application_server_java(9) |
| contact@wpscan.com | 865 | 547 | themeum(14)-ays-pro(12)-tipsandtricks-hq(12)-10web(9)-webnus(9) | 686 | tutor_lms(11)-modern_events_calendar_lite(9)-photo_gallery(7)-website_builder(7)-the_plus_addons_for_elementor(6) |
| cve-assign@fb.com | 20 | 4 | facebook(12)-whatsapp(6)-oculus(1)-ray-ban(1) | 21 | whatsapp(6)-whatsapp_business(4)-hermes(3)-hhvm(2)-zstandard(2) |
| cve-assignments@hackerone.com | 113 | 24 | fedoraproject(18)-netapp(16)-oracle(14)-haxx(13)-pulsesecure(13) | 126 | fedora(18)-pulse_connect_secure(12)-concrete_cms(11)-avalanche(10)-curl(9) |
| cve-coordination@incibe.es | 20 | 8 | tcman(5)-sitel-sa(4)-artica(3)-zivautomation(2)-circutor(2) | 14 | gim(5)-integria_ims(3)-4cct-ea6-334126bf_firmware(2)-4cct-ea6-334126bf(2)-cap\/prx_firmware(2) |
| cve-notifications-us@f-secure.com | 21 | 6 | f-secure(17)-apple(10)-microsoft(9)-amazon(4)-opengroup(1) | 20 | linux_security(10)-macos(10)-windows(9)-elements_endpoint_protection(8)-atlant(8) |
| cve-requests@bitdefender.com | 11 | 2 | bitdefender(11)-microsoft(1) | 5 | gravityzone(7)-endpoint_security_tools(6)-total_security(2)-gravityzone_business_security(1)-windows(1) |
| cve@cert.org.tw | 168 | 41 | asus(38)-qsan(31)-ecoa(13)-hgiga(6)-learningdigital(6) | 250 | storage_manager(23)-asmb8-ikvm(18)-asmb8-ikvm_firmware(18)-z10pr-d16(18)-z10pe-d16_ws(18) |
| cve@checkpoint.com | 7 | 3 | checkpoint(5)-amazon(2)-microsoft(1) | 9 | kindle_firmware(2)-kindle(2)-identity_agent(1)-ssl_network_extender(1)-mobile_access_portal_agent(1) |
| cve@gitlab.com | 185 | 8 | gitlab(160)-wireshark(22)-fedoraproject(13)-debian(6)-oracle(5) | 12 | gitlab(159)-wireshark(22)-fedora(13)-debian_linux(6)-zfs_storage_appliance(3) |
| cve@mitre.org | 5343 | 1701 | netgear(242)-fedoraproject(234)-debian(193)-apple(143)-gpac(109) | 4468 | fedora(234)-debian_linux(192)-macos(121)-rbr850(109)-rbr850_firmware(109) |
| cve@navercorp.com | 3 | 2 | naver(2)-navercorp(1) | 3 | comic_viewer(1)-toolbar(1)-whale(1) |
| cve@rapid7.com | 21 | 7 | akaunting(6)-rapid7(5)-akkadianlabs(3)-automox(2)-pimcore(2) | 11 | akaunting(6)-provisioning_manager(3)-ova_appliance(3)-automox(2)-nexpose(2) |
| cve@usom.gov.tr | 7 | 4 | krontech(4)-tubitak(1)-pardus(1)-ipack(1) | 4 | single_connect(4)-pardus_software_center(1)-liderahenk(1)-scada_automation(1) |
| cve_disclosure@tech.gov.sg | 3 | 2 | dlink(2)-tightvnc(1) | 3 | dwr-932c(2)-dwr-932c_e1_firmware(2)-tightvnc(1) |
| cybersecurity@ch.abb.com | 8 | 2 | abb(8)-busch-jaeger(1) | 21 | spiet800(3)-spiet800_firmware(3)-pni800_firmware(3)-pni800(3)-mybusch-jaeger(1) |
| cybersecurity@dahuatech.com | 3 | 1 | dahuasecurity(3) | 94 | ipc-hx5xxx(3)-ipc-hx3xxx_firmware(3)-ipc-hx5xxx_firmware(3)-ipc-hx3xxx(3)-sd1a1_firmware(2) |
| cybersecurity@hitachi-powergrids.com | 3 | 3 | hitachiabb-powergrids(2)-abb(1)-hitachienergy(1) | 5 | sdm600(1)-sdm600_firmware(1)-esoms(1)-retail_operations(1)-counterparty_settlement_and_billing(1) |
| cybersecurity@hitachienergy.com | 10 | 3 | hitachi(6)-hitachienergy(3)-abb(1) | 19 | linkone(4)-relion_650(2)-relion_670_firmware(2)-relion_650_firmware(2)-relion_sam600-io_firmware(2) |
| cybersecurity@schneider-electric.com | 123 | 2 | schneider-electric(113)-se(2) | 382 | evlink_city_evc1s7p4(18)-evlink_smart_wallbox_evb1a_firmware(18)-evlink_city_evc1s7p4_firmware(18)-evlink_parking_evw2_firmware(18)-evlink_smart_wallbox_evb1a(18) |
| disclose@cybersecurityworks.com | 2 | 2 | zohocorp(1)-microsoft(1) | 2 | zoho_crm_lead_magnet(1)-clarity(1) |
| disclosure@synopsys.com | 7 | 5 | nagios(2)-goautodial(2)-emqx(1)-octavolabs(1)-nagvis(1) | 6 | nagios_xi(2)-goautodial_api(2)-goautodial(2)-emq_x_broker(1)-vernemq(1) |
| disclosures@gallagher.com | 13 | 1 | gallagher(13) | 3 | command_centre(11)-command_centre_mobile_client(1)-command_centre_mobile_connect(1) |
| dl_cve@linecorp.com | 5 | 1 | linecorp(5) | 2 | line(4)-central_dogma(1) |
| f5sirt@f5.com | 82 | 5 | f5(82)-openresty(1)-oracle(1)-fedoraproject(1)-netapp(1) | 32 | big-ip_application_security_manager(57)-big-ip_access_policy_manager(53)-big-ip_advanced_web_application_firewall(47)-big-ip_domain_name_system(45)-big-ip_advanced_firewall_manager(45) |
| hp-security-alert@hp.com | 14 | 2 | hp(9)-samsung(1) | 446 | futuresmart_4(3)-futuresmart_5(3)-laserjet_pro_j8h60a_firmware(2)-laserjet_pro_j8h61a_firmware(2)-laserjet_pro_j8h60a(2) |
| hsrc@hikvision.com | 1 | 1 | hikvision(1) | 512 | ds-2df6a236x-ael\(t3\)(1)-ds-2td1117-2\/pa_firmware(1)-ds-2cd2127g2-\(-su\)(1)-ds-2cd3686g2-izs_firmware(1)-ds-2cd3023g2-iu_firmware(1) |
| ics-cert@hq.dhs.gov | 275 | 43 | deltaww(33)-advantech(25)-fatek(22)-siemens(19)-auvesy(17) | 306 | versiondog(17)-winproladder(13)-ir615_firmware(13)-ir615(13)-vigilant_mastermed(12) |
| iletisim@usom.gov.tr | 2 | 1 | meddata(2) | 1 | hbys(2) |
| info@appcheck-ng.com | 3 | 3 | duplicate_post_project(1)-wpo365(1)-kentico(1) | 3 | duplicate_post(1)-wordpress_\+azure_ad\/_microsoft_office_365(1)-xperience(1) |
| info@cert.vde.com | 80 | 13 | weidmueller(13)-geutebrueck(12)-pepperl-fuchs(11)-phoenixcontact(11)-wago(10) | 373 | ie-wl-vl-ap-br-cl-eu(12)-ie-wlt-bl-ap-cl-eu_firmware(12)-ie-wlt-bl-ap-cl-eu(12)-ie-wlt-bl-ap-cl-us_firmware(12)-ie-wl-bl-ap-cl-eu(12) |
| infosec@edk2.groups.io | 6 | 1 | tianocore(6) | 2 | edk2(5)-edk_ii(1) |
| jenkinsci-cert@googlegroups.com | 103 | 2 | jenkins(103)-microsoft(2) | 57 | jenkins(30)-config_file_provider(4)-xebialabs_xl_deploy(4)-team_foundation_server(3)-scriptler(3) |
| mobile.security@samsung.com | 198 | 5 | google(129)-samsung(109)-linux(5)-mediatek(1)-qualcomm(1) | 72 | android(129)-exynos_9830(15)-exynos(14)-notes(11)-internet(10) |
| openssl-security@openssl.org | 9 | 13 | openssl(9)-oracle(7)-tenable(6)-debian(6)-netapp(6) | 202 | openssl(9)-mysql_server(6)-debian_linux(6)-zfs_storage_appliance_kit(5)-graalvm(5) |
| prodsec@nozominetworks.com | 3 | 1 | nozominetworks(2) | 2 | guardian(2)-central_management_control(2) |
| product-cna@github.com | 12 | 1 | github(11) | 2 | enterprise_server(8)-github(3) |
| product-security@apple.com | 322 | 4 | apple(322)-fedoraproject(9)-webkitgtk(5)-debian(1) | 18 | macos(261)-iphone_os(222)-mac_os_x(183)-ipados(159)-watchos(151) |
| product-security@axis.com | 4 | 1 | axis(4) | 5 | axis_os_2018(3)-axis_os(3)-axis_os_2020(3)-axis_os_2016(3)-device_manager(1) |
| productcert@siemens.com | 258 | 3 | siemens(250)-mendix(8)-debian(1) | 638 | teamcenter_visualization(68)-jt2go(65)-jt_utilities(24)-jt_open_toolkit(21)-solid_edge(19) |
| productsecurity@jci.com | 12 | 1 | johnsoncontrols(12) | 14 | exacqvision_web_service(3)-metasys(1)-exacqvision_enterprise_manager(1)-c-cure_9000(1)-c-cure_9000_firmware(1) |
| psirt-info@cyber.jp.nec.com | 1 | 1 | nec(1) | 9 | univerge_dt930(1)-univerge_dt820(1)-univerge_dt820_firmware(1)-univerge_dt900_data_maintenance_tool(1)-univerge_dt830(1) |
| psirt@adobe.com | 473 | 7 | adobe(449)-microsoft(328)-apple(166)-magento(24)-linux(3) | 57 | windows(328)-macos(166)-acrobat_dc(117)-acrobat_reader_dc(117)-acrobat_reader(96) |
| psirt@amd.com | 23 | 8 | amd(23)-intel(2)-xen(2)-broadcom(2)-arm(2) | 240 | epyc_73f3(18)-epyc_7543p(18)-epyc_7313(18)-epyc_7513(18)-epyc_75f3(18) |
| psirt@arista.com | 12 | 1 | arista(12) | 4 | metamako_operating_system(6)-7130(6)-eos(5)-terminattr(1) |
| psirt@autodesk.com | 28 | 1 | autodesk(28) | 17 | design_review(8)-fbx_review(7)-autocad_mechanical(6)-autocad_map_3d(6)-autocad_mep(6) |
| psirt@bosch.com | 19 | 1 | bosch(19) | 67 | cpp7_firmware(6)-cpp6_firmware(6)-cpp7.3_firmware(6)-cpp7.3(6)-cpp6(6) |
| psirt@cisco.com | 587 | 9 | cisco(582)-snort(6)-clamav(3)-linux(3)-apple(2) | 1846 | rv110w(74)-rv130w(74)-rv130w_firmware(74)-rv110w_firmware(74)-rv215w_wireless-n_vpn_router(60) |
| psirt@esri.com | 22 | 2 | esri(21)-arcgis(1) | 10 | arcgis_server(10)-arcgis(5)-arcgis_pro(3)-arcreader(3)-arcgis_desktop(3) |
| psirt@forcepoint.com | 1 | 1 | forcepoint(1) | 1 | next_generation_firewall(1) |
| psirt@forgerock.com | 1 | 0 | 0 | ||
| psirt@fortinet.com | 115 | 2 | fortinet(115)-microsoft(2) | 44 | fortiweb(28)-fortios(13)-fortimanager(12)-fortimail(11)-fortiportal(11) |
| psirt@hcl.com | 2 | 1 | hcltechsw(2) | 2 | hcl_commerce(1)-connections(1) |
| psirt@huawei.com | 389 | 1 | huawei(389) | 124 | harmonyos(184)-emui(170)-magic_ui(161)-manageone(10)-usg9500(9) |
| psirt@lenovo.com | 34 | 6 | lenovo(22)-binatoneglobal(8)-motorola(3)-microsoft(2)-linux(1) | 633 | cn40(8)-connect_view_65(8)-lux_65(8)-lux_85_connect(8)-comfort_85_connect_firmware(8) |
| psirt@mcafee.com | 50 | 2 | mcafee(50)-microsoft(1) | 20 | endpoint_security(7)-total_protection(6)-database_security(6)-data_loss_prevention_endpoint(5)-epolicy_orchestrator(5) |
| psirt@mirantis.com | 3 | 2 | mirantis(3)-linux(1) | 3 | lens(2)-mirantis_container_runtime(1)-linux_kernel(1) |
| psirt@nvidia.com | 113 | 9 | nvidia(112)-microsoft(22)-redhat(18)-vmware(18)-citrix(18) | 158 | jetson_linux(35)-jetson_tx2(33)-jetson_xavier_nx(33)-jetson_tx1(30)-jetson_tx2_nx(30) |
| psirt@paloaltonetworks.com | 37 | 6 | paloaltonetworks(34)-linux(2)-fedoraproject(2)-microsoft(2)-debian(1) | 26 | pan-os(21)-cortex_xsoar(4)-prisma_cloud(3)-fedora(2)-linux_kernel(2) |
| psirt@sick.de | 4 | 1 | sick(4) | 3 | sopas_engineering_tool(3)-visionary-s_cx(1)-visionary-s_cx_firmware(1) |
| psirt@solarwinds.com | 33 | 2 | solarwinds(33)-microsoft(7) | 13 | orion_platform(14)-windows(6)-serv-u(5)-kiwi_syslog_server(5)-patch_manager(2) |
| psirt@thalesgroup.com | 4 | 2 | thalesgroup(4)-microsoft(2) | 4 | sentinel_protection_installer(2)-windows(2)-safenet_windows_logon_agent(1)-safenet_authentication_service_remote_desktop_gateway(1) |
| psirt@us.ibm.com | 430 | 9 | ibm(424)-linux(127)-microsoft(93)-oracle(35)-hp(21) | 193 | linux_kernel(127)-windows(93)-aix(81)-solaris(35)-rational_engineering_lifecycle_manager(25) |
| psirt@zte.com.cn | 30 | 1 | zte(30) | 67 | mf971r_firmware(7)-mf971r(7)-zxhn_h168n(3)-zxhn_h168n_firmware(3)-zxin10_cms(2) |
| reefs@jfrog.com | 14 | 2 | fedoraproject(14)-busybox(14) | 2 | fedora(14)-busybox(14) |
| report@snyk.io | 164 | 149 | fedoraproject(5)-netapp(3)-totaljs(3)-oracle(2)-python(2) | 173 | fedora(5)-debian_linux(2)-pimcore(2)-total.js(2)-go-proxyproto(2) |
| responsible-disclosure@pingidentity.com | 1 | 1 | pingidentity(1) | 1 | pingfederate(1) |
| responsibledisclosure@mattermost.com | 9 | 1 | mattermost(9) | 3 | mattermost(5)-mattermost_server(2)-mattermost_boards(2) |
| secalert@redhat.com | 289 | 82 | redhat(137)-fedoraproject(100)-debian(60)-linux(26)-privoxy(18) | 225 | fedora(100)-enterprise_linux(91)-debian_linux(60)-linux_kernel(26)-privoxy(18) |
| secalert_us@oracle.com | 589 | 10 | oracle(589)-netapp(173)-fedoraproject(71)-debian(16)-mcafee(2) | 208 | oncommand_insight(171)-snapcenter(128)-mysql(124)-oncommand_workflow_automation(87)-fedora(71) |
| secteam@freebsd.org | 7 | 1 | freebsd(7) | 1 | freebsd(7) |
| secure@blackberry.com | 9 | 1 | blackberry(9) | 6 | unified_endpoint_management(3)-protect(3)-qnx_software_development_platform(2)-workspaces_server(1)-qnx_os_for_medical(1) |
| secure@dell.com | 151 | 2 | dell(151)-microsoft(1) | 1256 | emc_powerscale_onefs(20)-latitude_9410(13)-latitude_9410_firmware(13)-latitude_9510(13)-latitude_9510_firmware(13) |
| secure@intel.com | 164 | 9 | intel(153)-microsoft(12)-netapp(10)-fedoraproject(3)-debian(2) | 2559 | proset_ac_8265_firmware(23)-proset_wi-fi_6_ax201(23)-killer_wi-fi_6e_ax1675(23)-proset_ac_9560(23)-proset_ac_3168_firmware(23) |
| secure@microsoft.com | 870 | 5 | microsoft(869)-fedoraproject(4)-google(2)-azure-iot-cli-extension(1)-apple(1) | 132 | windows_server_2016(493)-windows_10(492)-windows_server_2019(470)-windows_server_2012(334)-windows_8.1(302) |
| secure@symantec.com | 3 | 2 | symantec(1)-broadcom(1) | 16 | security_analytics(1)-symantec_advanced_secure_gateway_s200-30_firmware(1)-symantec_advanced_secure_gateway_s200-40(1)-symantec_proxysg(1)-symantec_advanced_secure_gateway_500-10(1) |
| securities@openeuler.org | 1 | 1 | openeuler(1) | 1 | isula-build(1) |
| security-advisories@github.com | 1064 | 387 | google(202)-fedoraproject(109)-debian(70)-nextcloud(48)-oracle(37) | 548 | tensorflow(200)-fedora(109)-debian_linux(70)-xstream(27)-business_activity_monitoring(25) |
| security-alert@hpe.com | 174 | 7 | arubanetworks(111)-hpe(43)-hp(19)-siemens(14)-microsoft(4) | 185 | clearpass_policy_manager(39)-airwave(24)-cloudline_cl5200_gen9_server_firmware(16)-cloudline_cl5200_gen9_server(16)-cloudline_cl5800_gen10_server(16) |
| security-alert@netapp.com | 20 | 2 | netapp(20)-pivotal_software(1) | 11 | cloud_manager(6)-e-series_santricity_os_controller(4)-clustered_data_ontap(3)-data_ontap(2)-ontap_system_manager(2) |
| security-alert@sophos.com | 8 | 2 | sophos(8)-microsoft(1) | 12 | home(1)-intercept_x(1)-connect(1)-windows(1)-intercept_x_for_server(1) |
| security-officer@isc.org | 6 | 5 | isc(6)-fedoraproject(5)-debian(5)-netapp(2)-oracle(1) | 26 | fedora(5)-bind(5)-debian_linux(5)-h300s(2)-h700s(2) |
| security-report@netflix.com | 2 | 1 | netflix(2) | 2 | hollow(1)-priam(1) |
| security.cna@qualcomm.com | 168 | 1 | qualcomm(167) | 1334 | wcd9380(158)-wcd9380_firmware(158)-wcd9370_firmware(156)-wcd9370(156)-wcd9375(154) |
| security@acronis.com | 10 | 3 | acronis(10)-microsoft(9)-linux(4) | 6 | windows(9)-cyber_protect(7)-cyber_protect_home_office(4)-linux_kernel(4)-agent(3) |
| security@android.com | 571 | 4 | google(570)-mediatek(47)-debian(3)-fedoraproject(1) | 113 | android(570)-mt6885(47)-mt6873(47)-mt6889(46)-mt6877(44) |
| security@apache.org | 176 | 16 | apache(176)-debian(28)-oracle(27)-fedoraproject(19)-netapp(17) | 330 | debian_linux(28)-fedora(19)-http_server(14)-traffic_server(12)-primavera_unifier(12) |
| security@atlassian.com | 58 | 1 | atlassian(52) | 12 | jira(35)-data_center(33)-jira_software_data_center(11)-confluence(3)-jira_service_management(3) |
| security@craftersoftware.com | 7 | 1 | craftercms(7) | 1 | crafter_cms(7) |
| security@debian.org | 1 | 0 | 0 | ||
| security@deepsurface.com | 1 | 2 | erlang(1)-microsoft(1) | 2 | windows(1)-erlang\/otp(1) |
| security@devolutions.net | 1 | 1 | devolutions(1) | 1 | remote_desktop_manager(1) |
| security@documentfoundation.org | 4 | 3 | libreoffice(3)-debian(2)-collaboraoffice(1) | 3 | libreoffice(3)-debian_linux(2)-online(1) |
| security@eclipse.org | 27 | 7 | eclipse(27)-netapp(5)-oracle(4)-apache(4)-fedoraproject(2) | 43 | jetty(6)-theia(5)-mosquitto(5)-e-series_santricity_os_controller(4)-e-series_santricity_web_services(4) |
| security@elastic.co | 45 | 16 | elastic(19)-fedoraproject(8)-djvulibre_project(5)-podofo_project(4)-redhat(4) | 22 | elasticsearch(8)-fedora(8)-djvulibre(5)-kibana(4)-enterprise_linux(4) |
| security@eset.com | 2 | 1 | eset(2) | 10 | endpoint_antivirus(2)-endpoint_security(2)-cyber_security(1)-server_security(1)-mail_security(1) |
| security@fidelissecurity.com | 4 | 1 | fidelissecurity(4) | 2 | network(4)-deception(4) |
| security@google.com | 22 | 8 | google(14)-dart(3)-linux(3)-netapp(2)-debian(2) | 39 | asylo(4)-dart_software_development_kit(3)-linux_kernel(3)-debian_linux(2)-libjxl(2) |
| security@huntr.dev | 189 | 77 | fedoraproject(23)-vim(20)-firefly-iii(12)-showdoc(12)-bookstackapp(11) | 78 | fedora(23)-vim(20)-firefly_iii(12)-showdoc(12)-bookstack(11) |
| security@jfrog.com | 10 | 6 | oracle(2)-netty(2)-quarkus(2)-jfrog(1)-h2database(1) | 11 | banking_digital_experience(2)-communications_diameter_signaling_router(2)-commerce_guided_search(2)-peoplesoft_enterprise_peopletools(2)-communications_cloud_native_core_binding_support_function(2) |
| security@joomla.org | 24 | 1 | joomla(24) | 1 | joomla\!(24) |
| security@kubernetes.io | 7 | 2 | kubernetes(7)-netapp(1) | 4 | kubernetes(5)-java(1)-trident(1)-ingress-nginx(1) |
| security@m-files.com | 3 | 1 | m-files(3) | 2 | m-files_server(3)-m-files_web(1) |
| security@mautic.org | 6 | 1 | acquia(6) | 1 | mautic(6) |
| security@microfocus.com | 34 | 1 | microfocus(34) | 18 | access_manager(7)-application_automation_tools(4)-application_performance_management(3)-arcsight_enterprise_security_manager(3)-netiq_advanced_authentication(2) |
| security@mozilla.org | 133 | 6 | mozilla(133)-debian(21)-microsoft(5)-google(3)-linux(2) | 14 | firefox(117)-thunderbird(72)-firefox_esr(58)-debian_linux(21)-windows(4) |
| security@octopus.com | 9 | 3 | octopus(9)-linux(2)-microsoft(2) | 7 | tentacle(3)-server(3)-windows(2)-linux_kernel(2)-octopus_deploy(1) |
| security@openvpn.net | 4 | 2 | openvpn(4)-microsoft(1) | 4 | openvpn(2)-windows(1)-connect(1)-openvpn_access_server(1) |
| security@opera.com | 1 | 1 | opera(1) | 1 | opera_mini(1) |
| security@oppo.com | 2 | 2 | oppo(2)-google(1) | 37 | oppo_x_2021(1)-oppo_a5_2020(1)-oppo_a73_5g(1)-oppo_find_x3_pro(1)-oppo_a53(1) |
| security@otrs.com | 17 | 1 | otrs(17) | 7 | otrs(13)-survey(1)-cis_in_customer_frontend(1)-itsmconfigurationmanagement(1)-otrscisincustomerfrontend(1) |
| security@pega.com | 3 | 1 | pega(3) | 1 | infinity(3) |
| security@php.net | 6 | 6 | php(6)-netapp(5)-debian(2)-oracle(1)-fedoraproject(1) | 6 | php(6)-clustered_data_ontap(5)-debian_linux(2)-communications_diameter_signaling_router(1)-fedora(1) |
| security@puppet.com | 9 | 2 | puppet(9)-fedoraproject(2) | 9 | puppet_enterprise(7)-puppet(4)-puppetdb(2)-puppet_agent(2)-fedora(2) |
| security@qnap.com | 50 | 2 | qnap(48)-roonlabs(1) | 66 | qts(16)-quts_hero(13)-nas(8)-qutscloud(8)-qvr(6) |
| security@replicated.com | 1 | 1 | replicated(1) | 1 | replicated_classic(1) |
| security@salesforce.com | 5 | 4 | salesforce(4)-linux(1)-microsoft(1)-tableau(1) | 4 | mule(4)-linux_kernel(1)-windows(1)-tableau_server(1) |
| security@snowsoftware.com | 2 | 1 | snowsoftware(2) | 2 | snow_inventory_java_scanner(1)-snow_inventory_agent(1) |
| security@suse.com | 18 | 7 | opensuse(9)-suse(8)-rancher(4)-linuxfoundation(2)-saltstack(1) | 23 | factory(6)-linux_enterprise_server(5)-leap(5)-rancher(4)-manager_server(2) |
| security@synology.com | 38 | 1 | synology(38) | 15 | diskstation_manager(23)-diskstation_manager_unified_controller(13)-vs960hd(8)-uc3200(8)-skynas_firmware(8) |
| security@tcpdump.org | 1 | 1 | tcpdump(1) | 1 | tcpslice(1) |
| security@teradici.com | 10 | 1 | teradici(10) | 8 | pcoip_graphics_agent(2)-pcoip_soft_client(2)-pcoip_client(2)-pcoip_standard_agent(1)-pcoip_connection_manager_and_security_gateway(1) |
| security@tibco.com | 37 | 2 | tibco(35)-microsoft(8) | 31 | windows(8)-ftl(5)-spotfire_server(4)-eftl(4)-administrator(3) |
| security@trendmicro.com | 78 | 7 | trendmicro(78)-microsoft(48)-novell(1)-emc(1)-linux(1) | 46 | windows(48)-apex_one(45)-worry-free_business_security(36)-officescan(26)-worry-free_business_security_services(12) |
| security@ubuntu.com | 30 | 7 | canonical(25)-linux(4)-oracle(1)-debian(1)-bluez(1) | 10 | ubuntu_linux(18)-apport(7)-linux_kernel(4)-multipass(2)-openjdk(1) |
| security@vaadin.com | 14 | 1 | vaadin(14) | 6 | vaadin(13)-flow(7)-designer(1)-flow-server(1)-vaadin-checkbox-flow(1) |
| security@vmware.com | 93 | 13 | vmware(79)-microsoft(6)-linux(5)-cloudfoundry(4)-fedoraproject(2) | 72 | cloud_foundation(41)-vcenter_server(26)-vrealize_suite_lifecycle_manager(12)-vrealize_operations_manager(8)-windows(6) |
| security@wordfence.com | 158 | 139 | profilepress(4)-wp-upload-restriction_project(3)-brizy(3)-wpdownloadmanager(2)-ninjaforms(2) | 185 | profilepress(4)-wp-upload-restriction(3)-brizy-page_builder(3)-wordpress_download_manager(2)-ninja_forms(2) |
| security@xen.org | 29 | 4 | xen(25)-fedoraproject(16)-debian(15)-linux(4) | 4 | xen(25)-fedora(16)-debian_linux(15)-linux_kernel(4) |
| security@zoom.us | 20 | 6 | zoom(17)-microsoft(4)-keybase(3)-google(3)-linux(3) | 39 | meetings(7)-zoom_on-premise_recording_connector(4)-zoom_on-premise_virtual_room_connector_load_balancer(4)-zoom_on-premise_virtual_room_connector(4)-zoom_on-premise_meeting_connector_mmr(4) |
| security@zyxel.com.tw | 9 | 1 | zyxel(9) | 118 | gs1900-8_firmware(3)-gs1900-16_firmware(3)-gs1900-24hpv2_firmware(3)-gs1900-48hpv2(3)-gs1900-16(3) |
| securityalerts@avaya.com | 8 | 1 | avaya(8) | 4 | aura_utility_services(3)-aura_appliance_virtualization_platform(2)-aura_experience_portal(2)-aura_device_services(1) |
| sep@nlnetlabs.nl | 4 | 1 | nlnetlabs(4) | 1 | routinator(4) |
| sirt@brocade.com | 5 | 1 | broadcom(5) | 1 | fabric_operating_system(5) |
| sirt@juniper.net | 134 | 1 | juniper(134) | 242 | junos(112)-junos_os_evolved(29)-srx4600(16)-srx1500(16)-mx960(15) |
| talos-cna@cisco.com | 270 | 35 | reolink(73)-advantech(37)-debian(32)-gpac(29)-lantronix(24) | 49 | rlc-410w_firmware(73)-rlc-410w(73)-r-seenet(33)-debian_linux(32)-gpac(29) |
| vuln@ca.com | 1 | 2 | broadcom(1)-microsoft(1) | 4 | windows_server_2012(1)-windows_server_2019(1)-ca_network_flow_analysis(1)-windows_server_2016(1) |
| vuln@krcert.or.kr | 15 | 12 | microsoft(8)-tobesoft(3)-bandisoft(2)-unidocs(1)-dreamsecurity(1) | 14 | windows(8)-nexacro(3)-ark_library(2)-ezpdfreader(1)-magicline4nx.exe(1) |
| vulnerabilities@zephyrproject.org | 14 | 1 | zephyrproject(14) | 1 | zephyr(14) |
| vulnerability@kaspersky.com | 3 | 2 | kaspersky(3)-microsoft(1) | 4 | internet_security(1)-password_manager(1)-windows(1)-endpoint_security(1) |
| vulnerability@ncsc.ch | 18 | 9 | businessdnasolutions(10)-wpcloudplugins(4)-micron(1)-skhynix(1)-samsung(1) | 12 | topease(11)-ddr4_sdram(1)-lddr4(1)-lddr4_firmware(1)-ddr4_sdram_firmware(1) |
| vulnerabilitylab@whitesourcesoftware.com | 79 | 43 | open-emr(7)-opennms(7)-dolibarr(4)-tuzitio(4)-darwin(4) | 45 | openemr(7)-meridian(7)-horizon(6)-dolibarr(4)-camaleon_cms(4) |
| vulnreport@tenable.com | 111 | 26 | trendnet(17)-netgear(13)-zohocorp(11)-gryphonconnect(10)-racom(9) | 187 | tew-827dru_firmware(17)-tew-827dru(17)-gryphon_tower(10)-gryphon_tower_firmware(10)-m\!dge(9) |
| vultures@jpcert.or.jp | 256 | 95 | cybozu(47)-elecom(24)-nec(15)-ec-cube(12)-weseek(11) | 847 | garoon(23)-remote_service_manager(13)-movable_type(12)-growi(11)-office(11) |
| zdi-disclosures@trendmicro.com | 372 | 22 | bentley(78)-foxitsoftware(74)-microsoft(74)-opentext(36)-parallels(30) |
Created
February 22, 2022 03:21
-
-
Save imfht/4f779413d0fef551c7c6daceec1ceee2 to your computer and use it in GitHub Desktop.
why_so_many_vuln.md
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
import re
from collections import Counter
import pandas as pd
import tabulate
from pandas.io.json import json_normalize
data = json_normalize(pd.read_json('./nvdcve-1.1-2021.json')['CVE_Items'])
groups = data.groupby('cve.CVE_data_meta.ASSIGNER')
output = []
def raw_node2company(nodes):
assigner_companys = []
assigner_products = []
for cve_node in list(nodes['configurations.nodes']):
node_companys = set()
node_products = set()
def raw_node2product():
pass
line = ['cna', 'total_vul', 'total_company', 'most_common_company', 'total_product', 'most_common_product']
data = []
for name, group in groups:
cnt = len(group)
output.append([name, cnt])
total = len(group)
company_info, product_info = raw_node2company(group)
total_company = len(company_info)
total_product = len(product_info)
company_info = '-'.join([f'{i[0]}({i[1]})' for i in company_info.most_common(5)])
product_info = '-'.join([f'{i[0]}({i[1]})' for i in product_info.most_common(5)])
print(tabulate.tabulate(tabular_data=data, headers=line,tablefmt='github'))
pd_data = pd.DataFrame.from_records(data, columns=line)
if name == 'main':
pd_data.to_excel('123.xls')
if name == 'main':
pass