- What is the hpe CNA?
- hpe is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 1,273 CVE records since 2016.
- How many CVEs has hpe published?
- hpe has published 1,273 CVE records, including 222 in the last two years.
- What is hpe's CVE data quality grade?
- RadicalNotion.AI grades hpe's CVE data quality as F, with an overall completeness score of 54.1%. This reflects how consistently its CVE records include vendor (56.8%), product (99.5%), CVSS (32%), and CWE (28%) information.
- What products does hpe publish CVEs for?
- hpe most frequently publishes CVEs for Intelligent Management Center, ArubaOS, clearpass_policy_manager, sd-wan, Intelligent Management Center (IMC) PLAT.
- Which vendors does hpe cover?
- hpe publishes CVEs across 10 distinct vendors, most often Hewlett Packard Enterprise, HP, arubanetworks, siemens, microsoft.
- Is hpe actively publishing CVEs?
- hpe is currently active, based on 222 CVEs in the last two years.
- What is the average severity of hpe's CVEs?
- The average CVSS base score across hpe's scored CVEs is 7.0.
- How many critical CVEs has hpe published?
- hpe has published 266 critical-severity CVEs and 692 high-severity CVEs.
- Are any of hpe's CVEs in CISA's Known Exploited Vulnerabilities catalog?
- Yes. 2 of hpe's CVEs are listed in CISA's Known Exploited Vulnerabilities (KEV) catalog, meaning they are confirmed to be exploited in the wild.
- What are the most common weakness types in hpe's CVEs?
- hpe's CVEs most often map to these CWE weakness types: CWE-77 (Improper Neutralization of Special Elements used in a Command ('Command Injection')), CWE-78 (Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')), CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')), CWE-22 (Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')).
- How does hpe rank among CNAs?
- By total CVE volume, hpe ranks #34 of 370 CNAs, and it reports more complete CVE records than 9% of all CNAs.