- How many CVEs does canonical have?
- canonical has 4,320 published CVE records since 2004, including 81 in the last two years.
- How many canonical CVEs are in CISA KEV?
- Yes — 47 of canonical's CVEs are listed in CISA's Known Exploited Vulnerabilities catalog, confirmed exploited in the wild and carrying a CISA remediation deadline.
- Which canonical products have the most CVEs?
- The canonical products with the most published CVEs are Ubuntu Linux, apport, lxd, juju, snapd.
- What are the most common weakness types in canonical CVEs?
- canonical's CVEs most often map to these CWE weakness types: CWE-125 (Out-of-bounds Read), CWE-416 (Use After Free), CWE-20 (Improper Input Validation), CWE-400 (Uncontrolled Resource Consumption).
- Are there public exploits for canonical vulnerabilities?
- Yes — 501 of canonical's CVEs have a known public exploit.
- How many critical canonical vulnerabilities are there?
- canonical has 588 critical and 1,499 high-severity CVEs.
- What is the average severity of canonical CVEs?
- The average CVSS base score across canonical's scored CVEs is 6.8.