What is the ERIC CNA?
ERIC is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 19 CVE records since 2024.
How many CVEs has ERIC published?
ERIC has published 19 CVE records, including 19 in the last two years.
What is ERIC's CVE data quality grade?
RadicalNotion.AI grades ERIC's CVE data quality as A, with an overall completeness score of 100%. This reflects how consistently its CVE records include vendor (100%), product (100%), CVSS (100%), and CWE (100%) information.
What products does ERIC publish CVEs for?
ERIC most frequently publishes CVEs for indoor connect 8855 firmware, Indoor Connect 8855, CodeChecker, network manager, Packet Core Controller.
Which vendors does ERIC cover?
ERIC publishes CVEs across 1 distinct vendors, most often Ericsson, pip, PyPI.
Is ERIC actively publishing CVEs?
ERIC is currently active, based on 19 CVEs in the last two years.
What is the average severity of ERIC's CVEs?
The average CVSS base score across ERIC's scored CVEs is 7.3.
How many critical CVEs has ERIC published?
ERIC has published 2 critical-severity CVEs and 12 high-severity CVEs.
Are any of ERIC's CVEs in CISA's Known Exploited Vulnerabilities catalog?
No. None of ERIC's CVEs are currently listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.
What are the most common weakness types in ERIC's CVEs?
ERIC's CVEs most often map to these CWE weakness types: CWE-20 (Improper Input Validation), CWE-352 (Cross-Site Request Forgery (CSRF)), CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')), CWE-78 (Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')).
How does ERIC rank among CNAs?
By total CVE volume, ERIC ranks #247 of 370 CNAs, and it reports more complete CVE records than 60% of all CNAs.
