- What is the DSF CNA?
- DSF is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 10 CVE records since 2025.
- How many CVEs has DSF published?
- DSF has published 10 CVE records, including 10 in the last two years.
- What is DSF's CVE data quality grade?
- RadicalNotion.AI grades DSF's CVE data quality as C, with an overall completeness score of 75%. This reflects how consistently its CVE records include vendor (100%), product (100%), CVSS (0%), and CWE (100%) information.
- What products does DSF publish CVEs for?
- DSF most frequently publishes CVEs for Django, Red Hat Ansible Automation Platform 2, Red Hat Discovery 2, Red Hat Satellite 6, Red Hat Ansible Automation Platform 2.5 for RHEL 8.
- Which vendors does DSF cover?
- DSF publishes CVEs across 1 distinct vendors, most often django, djangoproject, Red Hat.
- Is DSF actively publishing CVEs?
- DSF is currently active, based on 10 CVEs in the last two years.
- How many critical CVEs has DSF published?
- DSF has published 2 critical-severity CVEs and 11 high-severity CVEs.
- Are any of DSF's CVEs in CISA's Known Exploited Vulnerabilities catalog?
- No. None of DSF's CVEs are currently listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.
- What are the most common weakness types in DSF's CVEs?
- DSF's CVEs most often map to these CWE weakness types: CWE-89 (Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')), CWE-407 (Inefficient Algorithmic Complexity), CWE-524 (Use of Cache Containing Sensitive Information), CWE-770 (Allocation of Resources Without Limits or Throttling).
- How does DSF rank among CNAs?
- By total CVE volume, DSF ranks #305 of 370 CNAs, and it reports more complete CVE records than 23% of all CNAs.