What is the HW CNA?
HW is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 15 CVE records since 2022.
How many CVEs has HW published?
HW has published 15 CVE records, including 4 in the last two years.
What is HW's CVE data quality grade?
RadicalNotion.AI grades HW's CVE data quality as A, with an overall completeness score of 100%. This reflects how consistently its CVE records include vendor (100%), product (100%), CVSS (100%), and CWE (100%) information.
What products does HW publish CVEs for?
HW most frequently publishes CVEs for BlueSpice, BlueSpice Extension:AtMentions, common user interface, Common User Interface Component, Extension:BlueSpiceAvatars.
Which vendors does HW cover?
HW publishes CVEs across 1 distinct vendors, most often Hallo Welt! GmbH, hallowelt.
Is HW actively publishing CVEs?
HW is currently active, based on 4 CVEs in the last two years.
What is the average severity of HW's CVEs?
The average CVSS base score across HW's scored CVEs is 4.0.
Are any of HW's CVEs in CISA's Known Exploited Vulnerabilities catalog?
No. None of HW's CVEs are currently listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.
What are the most common weakness types in HW's CVEs?
HW's CVEs most often map to these CWE weakness types: CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')), CWE-116 (Improper Encoding or Escaping of Output), CWE-20 (Improper Input Validation), CWE-552 (Files or Directories Accessible to External Parties).
How does HW rank among CNAs?
By total CVE volume, HW ranks #272 of 370 CNAs, and it reports more complete CVE records than 60% of all CNAs.
