What is the Carrier CNA?
Carrier is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 24 CVE records since 2022.
How many CVEs has Carrier published?
Carrier has published 24 CVE records, including 16 in the last two years.
What is Carrier's CVE data quality grade?
RadicalNotion.AI grades Carrier's CVE data quality as A, with an overall completeness score of 100%. This reflects how consistently its CVE records include vendor (100%), product (100%), CVSS (100%), and CWE (100%) information.
What products does Carrier publish CVEs for?
Carrier most frequently publishes CVEs for lenels2 lnl-x2210 firmware, ep4502 firmware, EP4502, i-Vu, lenels2 lnl-4420.
Which vendors does Carrier cover?
Carrier publishes CVEs across 7 distinct vendors, most often Carrier, LenelS2, hidglobal, HID Mercury, Automated Logic.
Is Carrier actively publishing CVEs?
Carrier is currently active, based on 16 CVEs in the last two years.
What is the average severity of Carrier's CVEs?
The average CVSS base score across Carrier's scored CVEs is 8.1.
How many critical CVEs has Carrier published?
Carrier has published 7 critical-severity CVEs and 12 high-severity CVEs.
Are any of Carrier's CVEs in CISA's Known Exploited Vulnerabilities catalog?
No. None of Carrier's CVEs are currently listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.
What are the most common weakness types in Carrier's CVEs?
Carrier's CVEs most often map to these CWE weakness types: CWE-78 (Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')), CWE-425 (Direct Request ('Forced Browsing')), CWE-120 (Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')), CWE-601 (URL Redirection to Untrusted Site ('Open Redirect')).
How does Carrier rank among CNAs?
By total CVE volume, Carrier ranks #232 of 370 CNAs, and it reports more complete CVE records than 60% of all CNAs.
