What is the Altium CNA?
Altium is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 9 CVE records since 2026.
How many CVEs has Altium published?
Altium has published 9 CVE records, including 9 in the last two years.
What is Altium's CVE data quality grade?
RadicalNotion.AI grades Altium's CVE data quality as A, with an overall completeness score of 100%. This reflects how consistently its CVE records include vendor (100%), product (100%), CVSS (100%), and CWE (100%) information.
What products does Altium publish CVEs for?
Altium most frequently publishes CVEs for on-prem enterprise server, Altium Live, Altium Enterprise Server, AES, Altium 365.
Which vendors does Altium cover?
Altium publishes CVEs across 1 distinct vendors, most often Altium.
Is Altium actively publishing CVEs?
Altium is currently active, based on 9 CVEs in the last two years.
What is the average severity of Altium's CVEs?
The average CVSS base score across Altium's scored CVEs is 7.6.
How many critical CVEs has Altium published?
Altium has published 5 critical-severity CVEs and 4 high-severity CVEs.
Are any of Altium's CVEs in CISA's Known Exploited Vulnerabilities catalog?
No. None of Altium's CVEs are currently listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.
What are the most common weakness types in Altium's CVEs?
Altium's CVEs most often map to these CWE weakness types: CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')), CWE-200 (Exposure of Sensitive Information to an Unauthorized Actor), CWE-284 (Improper Access Control), CWE-295 (Improper Certificate Validation).
How does Altium rank among CNAs?
By total CVE volume, Altium ranks #319 of 370 CNAs, and it reports more complete CVE records than 60% of all CNAs.
