What is the Mandiant CNA?
Mandiant is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 17 CVE records since 2023.
How many CVEs has Mandiant published?
Mandiant has published 17 CVE records, including 14 in the last two years.
What is Mandiant's CVE data quality grade?
RadicalNotion.AI grades Mandiant's CVE data quality as B, with an overall completeness score of 80.9%. This reflects how consistently its CVE records include vendor (100%), product (100%), CVSS (23.5%), and CWE (100%) information.
What products does Mandiant publish CVEs for?
Mandiant most frequently publishes CVEs for Blue, AMPA, Lightdash, Controller, debian linux.
Which vendors does Mandiant cover?
Mandiant publishes CVEs across 13 distinct vendors, most often Explorance, EnerSys, Aviatrix, Lightdash, Douglas Wilson.
Is Mandiant actively publishing CVEs?
Mandiant is currently active, based on 14 CVEs in the last two years.
What is the average severity of Mandiant's CVEs?
The average CVSS base score across Mandiant's scored CVEs is 8.3.
How many critical CVEs has Mandiant published?
Mandiant has published 9 critical-severity CVEs and 5 high-severity CVEs.
Are any of Mandiant's CVEs in CISA's Known Exploited Vulnerabilities catalog?
Yes. 2 of Mandiant's CVEs are listed in CISA's Known Exploited Vulnerabilities (KEV) catalog, meaning they are confirmed to be exploited in the wild.
What are the most common weakness types in Mandiant's CVEs?
Mandiant's CVEs most often map to these CWE weakness types: CWE-89 (Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')), CWE-77 (Improper Neutralization of Special Elements used in a Command ('Command Injection')), CWE-434 (Unrestricted Upload of File with Dangerous Type), CWE-284 (Improper Access Control).
How does Mandiant rank among CNAs?
By total CVE volume, Mandiant ranks #263 of 370 CNAs, and it reports more complete CVE records than 29% of all CNAs.
