- How many CVEs does Broadcom have?
- Broadcom has 702 published CVE records since 1999, including 116 in the last two years.
- How many Broadcom CVEs are in CISA KEV?
- Yes — 6 of Broadcom's CVEs are listed in CISA's Known Exploited Vulnerabilities catalog, confirmed exploited in the wild and carrying a CISA remediation deadline.
- Which Broadcom products have the most CVEs?
- The Broadcom products with the most published CVEs are fabric operating system, Brocade SANnav, tcpreplay, brightstor arcserve backup, brocade fabric operating system firmware.
- What are the most common weakness types in Broadcom CVEs?
- Broadcom's CVEs most often map to these CWE weakness types: CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')), CWE-532 (Insertion of Sensitive Information into Log File), CWE-312 (Cleartext Storage of Sensitive Information), CWE-476 (NULL Pointer Dereference).
- Are there public exploits for Broadcom vulnerabilities?
- Yes — 139 of Broadcom's CVEs have a known public exploit.
- How many critical Broadcom vulnerabilities are there?
- Broadcom has 145 critical and 287 high-severity CVEs.
- What is the average severity of Broadcom CVEs?
- The average CVSS base score across Broadcom's scored CVEs is 7.3.