What is the Zowe CNA?
Zowe is a CVE Numbering Authority (CNA) — an organization authorized to assign CVE IDs to vulnerabilities in its scope. It has published 7 CVE records since 2023.
How many CVEs has Zowe published?
Zowe has published 7 CVE records, including 5 in the last two years.
What is Zowe's CVE data quality grade?
RadicalNotion.AI grades Zowe's CVE data quality as B, with an overall completeness score of 85.7%. This reflects how consistently its CVE records include vendor (100%), product (100%), CVSS (85.7%), and CWE (57.1%) information.
What products does Zowe publish CVEs for?
Zowe most frequently publishes CVEs for Zowe, api-layer, zowe api mediation layer, zowe_api_mediation_layer, @zowe/imperative.
Which vendors does Zowe cover?
Zowe publishes CVEs across 1 distinct vendors, most often Open Mainframe Project, zowe, linuxfoundation.
Is Zowe actively publishing CVEs?
Zowe is currently active, based on 5 CVEs in the last two years.
What is the average severity of Zowe's CVEs?
The average CVSS base score across Zowe's scored CVEs is 5.8.
How many critical CVEs has Zowe published?
Zowe has published 1 critical-severity CVEs and 0 high-severity CVEs.
Are any of Zowe's CVEs in CISA's Known Exploited Vulnerabilities catalog?
No. None of Zowe's CVEs are currently listed in CISA's Known Exploited Vulnerabilities (KEV) catalog.
What are the most common weakness types in Zowe's CVEs?
Zowe's CVEs most often map to these CWE weakness types: CWE-312 (Cleartext Storage of Sensitive Information), CWE-250 (Execution with Unnecessary Privileges), CWE-269 (Improper Privilege Management).
How does Zowe rank among CNAs?
By total CVE volume, Zowe ranks #334 of 370 CNAs, and it reports more complete CVE records than 32% of all CNAs.
