What is the lenovo CNA?
lenovo is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 465 CVE records since 2016.
How many CVEs has lenovo published?
lenovo has published 465 CVE records, including 135 in the last two years.
What is lenovo's CVE data quality grade?
RadicalNotion.AI grades lenovo's CVE data quality as B, with an overall completeness score of 87.8%. This reflects how consistently its CVE records include vendor (99.8%), product (100%), CVSS (79.4%), and CWE (71.8%) information.
What products does lenovo publish CVEs for?
lenovo most frequently publishes CVEs for BIOS, XClarity Administrator, thinkcentre m625q, thinkcentre m625q firmware, ideacentre 5-14iob6 firmware.
Which vendors does lenovo cover?
lenovo publishes CVEs across 13 distinct vendors, most often Lenovo, Lenovo Group Ltd., Motorola, IBM, microsoft.
Is lenovo actively publishing CVEs?
lenovo is currently active, based on 135 CVEs in the last two years.
What is the average severity of lenovo's CVEs?
The average CVSS base score across lenovo's scored CVEs is 6.5.
How many critical CVEs has lenovo published?
lenovo has published 5 critical-severity CVEs and 134 high-severity CVEs.
Are any of lenovo's CVEs in CISA's Known Exploited Vulnerabilities catalog?
No. None of lenovo's CVEs are currently listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.
What are the most common weakness types in lenovo's CVEs?
lenovo's CVEs most often map to these CWE weakness types: CWE-20 (Improper Input Validation), CWE-276 (Incorrect Default Permissions), CWE-427 (Uncontrolled Search Path Element), CWE-120 (Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')).
How does lenovo rank among CNAs?
By total CVE volume, lenovo ranks #58 of 370 CNAs, and it reports more complete CVE records than 34% of all CNAs.
