What is the OPPO CNA?
OPPO is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 22 CVE records since 2020.
How many CVEs has OPPO published?
OPPO has published 22 CVE records, including 6 in the last two years.
What is OPPO's CVE data quality grade?
RadicalNotion.AI grades OPPO's CVE data quality as F, with an overall completeness score of 54.6%. This reflects how consistently its CVE records include vendor (45.5%), product (100%), CVSS (40.9%), and CWE (31.8%) information.
What products does OPPO publish CVEs for?
OPPO most frequently publishes CVEs for ColorOS, OPPO Find X2, reno3 pro firmware, find x2 pro, find x2 pro firmware.
Which vendors does OPPO cover?
OPPO publishes CVEs across 3 distinct vendors, most often OPPO, google, ColorOS, oneplus.
Is OPPO actively publishing CVEs?
OPPO is currently active, based on 6 CVEs in the last two years.
What is the average severity of OPPO's CVEs?
The average CVSS base score across OPPO's scored CVEs is 7.7.
How many critical CVEs has OPPO published?
OPPO has published 2 critical-severity CVEs and 8 high-severity CVEs.
Are any of OPPO's CVEs in CISA's Known Exploited Vulnerabilities catalog?
No. None of OPPO's CVEs are currently listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.
What are the most common weakness types in OPPO's CVEs?
OPPO's CVEs most often map to these CWE weakness types: CWE-287 (Improper Authentication), CWE-200 (Exposure of Sensitive Information to an Unauthorized Actor), CWE-23 (Relative Path Traversal), CWE-266 (Incorrect Privilege Assignment).
How does OPPO rank among CNAs?
By total CVE volume, OPPO ranks #235 of 370 CNAs, and it reports more complete CVE records than 10% of all CNAs.
