What is the Baidu CNA?
Baidu is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 25 CVE records since 2022.
How many CVEs has Baidu published?
Baidu has published 25 CVE records, including 0 in the last two years.
What is Baidu's CVE data quality grade?
RadicalNotion.AI grades Baidu's CVE data quality as A, with an overall completeness score of 100%. This reflects how consistently its CVE records include vendor (100%), product (100%), CVSS (100%), and CWE (100%) information.
What products does Baidu publish CVEs for?
Baidu most frequently publishes CVEs for paddle, PaddlePaddle.
Which vendors does Baidu cover?
Baidu publishes CVEs across 1 distinct vendors, most often PaddlePaddle, pip, PyPI.
Is Baidu actively publishing CVEs?
Baidu is currently inactive (has not published recently), based on 0 CVEs in the last two years.
What is the average severity of Baidu's CVEs?
The average CVSS base score across Baidu's scored CVEs is 6.5.
How many critical CVEs has Baidu published?
Baidu has published 5 critical-severity CVEs and 6 high-severity CVEs.
Are any of Baidu's CVEs in CISA's Known Exploited Vulnerabilities catalog?
No. None of Baidu's CVEs are currently listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.
What are the most common weakness types in Baidu's CVEs?
Baidu's CVEs most often map to these CWE weakness types: CWE-369 (Divide By Zero), CWE-476 (NULL Pointer Dereference), CWE-78 (Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')), CWE-120 (Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')).
How does Baidu rank among CNAs?
By total CVE volume, Baidu ranks #227 of 370 CNAs, and it reports more complete CVE records than 60% of all CNAs.
