PandoraFMS CNA: CVE Report Card & Published CVEs

How complete and consistent PandoraFMS's CVE records are, scored across vendor, product, CVSS, and CWE coverage.

Frequently asked questions

Common questions about the PandoraFMS CNA.

What is the PandoraFMS CNA?

PandoraFMS is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 35 CVE records since 2023.

How many CVEs has PandoraFMS published?

PandoraFMS has published 35 CVE records, including 16 in the last two years.

What is PandoraFMS's CVE data quality grade?

RadicalNotion.AI grades PandoraFMS's CVE data quality as A, with an overall completeness score of 100%. This reflects how consistently its CVE records include vendor (100%), product (100%), CVSS (100%), and CWE (100%) information.

What products does PandoraFMS publish CVEs for?

PandoraFMS most frequently publishes CVEs for Pandora FMS, pandora_fms, pandorafms, Pandora ITSM.

Which vendors does PandoraFMS cover?

PandoraFMS publishes CVEs across 1 distinct vendors, most often Pandora FMS, artica, pandorafms, pandora_fms.

Is PandoraFMS actively publishing CVEs?

PandoraFMS is currently active, based on 16 CVEs in the last two years.

What is the average severity of PandoraFMS's CVEs?

The average CVSS base score across PandoraFMS's scored CVEs is 7.2.

How many critical CVEs has PandoraFMS published?

PandoraFMS has published 4 critical-severity CVEs and 30 high-severity CVEs.

Are any of PandoraFMS's CVEs in CISA's Known Exploited Vulnerabilities catalog?

No. None of PandoraFMS's CVEs are currently listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.

What are the most common weakness types in PandoraFMS's CVEs?

PandoraFMS's CVEs most often map to these CWE weakness types: CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')), CWE-89 (Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')), CWE-77 (Improper Neutralization of Special Elements used in a Command ('Command Injection')), CWE-78 (Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')).

How does PandoraFMS rank among CNAs?

By total CVE volume, PandoraFMS ranks #205 of 370 CNAs, and it reports more complete CVE records than 60% of all CNAs.

PandoraFMS

Overview

Data quality report card

What these scores mean

Severity and exploitation

Common weakness types

Publishing activity by year

Top vendors

Top products

Latest CVEs

Other CNAs