What is the Rockwell CNA?
Rockwell is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 206 CVE records since 2022.
How many CVEs has Rockwell published?
Rockwell has published 206 CVE records, including 153 in the last two years.
What is Rockwell's CVE data quality grade?
RadicalNotion.AI grades Rockwell's CVE data quality as A, with an overall completeness score of 99%. This reflects how consistently its CVE records include vendor (99%), product (100%), CVSS (99%), and CWE (98.1%) information.
What products does Rockwell publish CVEs for?
Rockwell most frequently publishes CVEs for arena, Arena®, ThinManager, Arena Simulation, factorytalk view.
Which vendors does Rockwell cover?
Rockwell publishes CVEs across 4 distinct vendors, most often Rockwell Automation, rockwellautomation, microsoft, Rockwell Auotmation, rcokwellautomation.
Is Rockwell actively publishing CVEs?
Rockwell is currently active, based on 153 CVEs in the last two years.
What is the average severity of Rockwell's CVEs?
The average CVSS base score across Rockwell's scored CVEs is 8.0.
How many critical CVEs has Rockwell published?
Rockwell has published 24 critical-severity CVEs and 164 high-severity CVEs.
Are any of Rockwell's CVEs in CISA's Known Exploited Vulnerabilities catalog?
No. None of Rockwell's CVEs are currently listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.
What are the most common weakness types in Rockwell's CVEs?
Rockwell's CVEs most often map to these CWE weakness types: CWE-20 (Improper Input Validation), CWE-400 (Uncontrolled Resource Consumption), CWE-787 (Out-of-bounds Write), CWE-125 (Out-of-bounds Read).
How does Rockwell rank among CNAs?
By total CVE volume, Rockwell ranks #84 of 370 CNAs, and it reports more complete CVE records than 53% of all CNAs.
