redhat-cnalr CNA: CVE Report Card & Published CVEs

How complete and consistent redhat-cnalr's CVE records are, scored across vendor, product, CVSS, and CWE coverage.

Frequently asked questions

Common questions about the redhat-cnalr CNA.

What is the redhat-cnalr CNA?

redhat-cnalr is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 5 CVE records since 2025.

How many CVEs has redhat-cnalr published?

redhat-cnalr has published 5 CVE records, including 5 in the last two years.

What is redhat-cnalr's CVE data quality grade?

RadicalNotion.AI grades redhat-cnalr's CVE data quality as A, with an overall completeness score of 100%. This reflects how consistently its CVE records include vendor (100%), product (100%), CVSS (100%), and CWE (100%) information.

What products does redhat-cnalr publish CVEs for?

redhat-cnalr most frequently publishes CVEs for fig2dev, hackage-server, cifs-utils, open security issue management, osim.

Which vendors does redhat-cnalr cover?

redhat-cnalr publishes CVEs across 3 distinct vendors, most often fig2dev project, xfig, cifs-utils, redhat, RedHatProductSecurity.

Is redhat-cnalr actively publishing CVEs?

redhat-cnalr is currently active, based on 5 CVEs in the last two years.

What is the average severity of redhat-cnalr's CVEs?

The average CVSS base score across redhat-cnalr's scored CVEs is 6.6.

How many critical CVEs has redhat-cnalr published?

redhat-cnalr has published 3 critical-severity CVEs and 1 high-severity CVEs.

Are any of redhat-cnalr's CVEs in CISA's Known Exploited Vulnerabilities catalog?

No. None of redhat-cnalr's CVEs are currently listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.

What are the most common weakness types in redhat-cnalr's CVEs?

redhat-cnalr's CVEs most often map to these CWE weakness types: CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')), CWE-22 (Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')), CWE-352 (Cross-Site Request Forgery (CSRF)), CWE-122 (Heap-based Buffer Overflow).

How does redhat-cnalr rank among CNAs?

By total CVE volume, redhat-cnalr ranks #357 of 370 CNAs, and it reports more complete CVE records than 60% of all CNAs.

redhat-cnalr

Overview

Data quality report card

What these scores mean

Severity and exploitation

Common weakness types

Publishing activity by year

Top vendors

Top products

Latest CVEs

Other CNAs