- What is the mitre CNA?
- mitre is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 112,208 CVE records since 1999.
- How many CVEs has mitre published?
- mitre has published 112,208 CVE records, including 10,824 in the last two years.
- What is mitre's CVE data quality grade?
- RadicalNotion.AI grades mitre's CVE data quality as F, with an overall completeness score of 4.8%. This reflects how consistently its CVE records include vendor (0.9%), product (0.9%), CVSS (2.4%), and CWE (14.8%) information.
- What products does mitre publish CVEs for?
- mitre most frequently publishes CVEs for debian_linux, Linux Kernel, ubuntu linux, fedora, linux.
- Which vendors does mitre cover?
- mitre publishes CVEs across 552 distinct vendors, most often Debian, Microsoft Corporation, Linux, canonical, fedoraproject.
- Is mitre actively publishing CVEs?
- mitre is currently active, based on 10,824 CVEs in the last two years.
- What is the average severity of mitre's CVEs?
- The average CVSS base score across mitre's scored CVEs is 6.8.
- How many critical CVEs has mitre published?
- mitre has published 19,931 critical-severity CVEs and 40,174 high-severity CVEs.
- Are any of mitre's CVEs in CISA's Known Exploited Vulnerabilities catalog?
- Yes. 318 of mitre's CVEs are listed in CISA's Known Exploited Vulnerabilities (KEV) catalog, meaning they are confirmed to be exploited in the wild.
- What are the most common weakness types in mitre's CVEs?
- mitre's CVEs most often map to these CWE weakness types: CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')), CWE-89 (Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')), CWE-787 (Out-of-bounds Write), CWE-120 (Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')).
- How does mitre rank among CNAs?
- By total CVE volume, mitre ranks #1 of 370 CNAs, and it reports more complete CVE records than 0% of all CNAs.