What is the dwf CNA?
dwf is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 157 CVE records since 2019.
How many CVEs has dwf published?
dwf has published 157 CVE records, including 0 in the last two years.
What is dwf's CVE data quality grade?
RadicalNotion.AI grades dwf's CVE data quality as F, with an overall completeness score of 53%. This reflects how consistently its CVE records include vendor (98.7%), product (100%), CVSS (1.9%), and CWE (11.5%) information.
What products does dwf publish CVEs for?
dwf most frequently publishes CVEs for debian linux, fedora, Jsish, OP-TEE, ubuntu linux.
Which vendors does dwf cover?
dwf publishes CVEs across 115 distinct vendors, most often debian, fedoraproject, pip, PyPI, Jsish.
Is dwf actively publishing CVEs?
dwf is currently inactive (has not published recently), based on 0 CVEs in the last two years.
What is the average severity of dwf's CVEs?
The average CVSS base score across dwf's scored CVEs is 7.3.
How many critical CVEs has dwf published?
dwf has published 1 critical-severity CVEs and 0 high-severity CVEs.
Are any of dwf's CVEs in CISA's Known Exploited Vulnerabilities catalog?
No. None of dwf's CVEs are currently listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.
What are the most common weakness types in dwf's CVEs?
dwf's CVEs most often map to these CWE weakness types: CWE-434 (Unrestricted Upload of File with Dangerous Type), CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')), CWE-457 (Use of Uninitialized Variable), CWE-476 (NULL Pointer Dereference).
How does dwf rank among CNAs?
By total CVE volume, dwf ranks #98 of 370 CNAs, and it reports more complete CVE records than 8% of all CNAs.
