What is the Mautic CNA?
Mautic is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 36 CVE records since 2021.
How many CVEs has Mautic published?
Mautic has published 36 CVE records, including 28 in the last two years.
What is Mautic's CVE data quality grade?
RadicalNotion.AI grades Mautic's CVE data quality as A, with an overall completeness score of 100%. This reflects how consistently its CVE records include vendor (100%), product (100%), CVSS (100%), and CWE (100%) information.
What products does Mautic publish CVEs for?
Mautic most frequently publishes CVEs for mautic/core, Mautic, mautic/core-lib, Docker Mautic, mautic/grapes-js-builder-bundle.
Which vendors does Mautic cover?
Mautic publishes CVEs across 2 distinct vendors, most often Mautic, composer, acquia.
Is Mautic actively publishing CVEs?
Mautic is currently active, based on 28 CVEs in the last two years.
What is the average severity of Mautic's CVEs?
The average CVSS base score across Mautic's scored CVEs is 6.4.
How many critical CVEs has Mautic published?
Mautic has published 5 critical-severity CVEs and 17 high-severity CVEs.
Are any of Mautic's CVEs in CISA's Known Exploited Vulnerabilities catalog?
No. None of Mautic's CVEs are currently listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.
What are the most common weakness types in Mautic's CVEs?
Mautic's CVEs most often map to these CWE weakness types: CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')), CWE-918 (Server-Side Request Forgery (SSRF)), CWE-89 (Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')), CWE-22 (Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')).
How does Mautic rank among CNAs?
By total CVE volume, Mautic ranks #201 of 370 CNAs, and it reports more complete CVE records than 60% of all CNAs.
