What is the naver CNA?
naver is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 39 CVE records since 2018.
How many CVEs has naver published?
naver has published 39 CVE records, including 21 in the last two years.
What is naver's CVE data quality grade?
RadicalNotion.AI grades naver's CVE data quality as C, with an overall completeness score of 75%. This reflects how consistently its CVE records include vendor (100%), product (100%), CVSS (0%), and CWE (100%) information.
What products does naver publish CVEs for?
naver most frequently publishes CVEs for whale, NAVER Whale browser, nGrinder, cloud explorer, mybox.
Which vendors does naver cover?
naver publishes CVEs across 2 distinct vendors, most often NAVER, navercorp, NAVER Corporation, npm, org.ngrinder.
Is naver actively publishing CVEs?
naver is currently active, based on 21 CVEs in the last two years.
How many critical CVEs has naver published?
naver has published 8 critical-severity CVEs and 8 high-severity CVEs.
Are any of naver's CVEs in CISA's Known Exploited Vulnerabilities catalog?
No. None of naver's CVEs are currently listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.
What are the most common weakness types in naver's CVEs?
naver's CVEs most often map to these CWE weakness types: CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')), CWE-346 (Origin Validation Error), CWE-358 (Improperly Implemented Security Check for Standard), CWE-266 (Incorrect Privilege Assignment).
How does naver rank among CNAs?
By total CVE volume, naver ranks #193 of 370 CNAs, and it reports more complete CVE records than 23% of all CNAs.
