What is the Ping Identity CNA?
Ping Identity is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 47 CVE records since 2021.
How many CVEs has Ping Identity published?
Ping Identity has published 47 CVE records, including 16 in the last two years.
What is Ping Identity's CVE data quality grade?
RadicalNotion.AI grades Ping Identity's CVE data quality as A, with an overall completeness score of 94.2%. This reflects how consistently its CVE records include vendor (97.9%), product (97.9%), CVSS (89.4%), and CWE (91.5%) information.
What products does Ping Identity publish CVEs for?
Ping Identity most frequently publishes CVEs for PingFederate, PingID Windows Login, PingID Integration for Windows Login, PingAccess, pingid integration kit.
Which vendors does Ping Identity cover?
Ping Identity publishes CVEs across 1 distinct vendors, most often Ping Identity, pingidentity, apple, forgerock, pingone.
Is Ping Identity actively publishing CVEs?
Ping Identity is currently active, based on 16 CVEs in the last two years.
What is the average severity of Ping Identity's CVEs?
The average CVSS base score across Ping Identity's scored CVEs is 6.4.
How many critical CVEs has Ping Identity published?
Ping Identity has published 1 critical-severity CVEs and 20 high-severity CVEs.
Are any of Ping Identity's CVEs in CISA's Known Exploited Vulnerabilities catalog?
No. None of Ping Identity's CVEs are currently listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.
What are the most common weakness types in Ping Identity's CVEs?
Ping Identity's CVEs most often map to these CWE weakness types: CWE-288 (Authentication Bypass Using an Alternate Path or Channel), CWE-310, CWE-20 (Improper Input Validation), CWE-306 (Missing Authentication for Critical Function).
How does Ping Identity rank among CNAs?
By total CVE volume, Ping Identity ranks #171 of 370 CNAs, and it reports more complete CVE records than 41% of all CNAs.
