- How many CVEs does Fedora Project have?
- Fedora Project has 5,449 published CVE records since 2005, including 6 in the last two years.
- How many Fedora Project CVEs are in CISA KEV?
- Yes — 85 of Fedora Project's CVEs are listed in CISA's Known Exploited Vulnerabilities catalog, confirmed exploited in the wild and carrying a CISA remediation deadline.
- Which Fedora Project products have the most CVEs?
- The Fedora Project products with the most published CVEs are fedora, extra packages for enterprise linux, 389 directory server, sssd, fedora core.
- What are the most common weakness types in Fedora Project CVEs?
- Fedora Project's CVEs most often map to these CWE weakness types: CWE-416 (Use After Free), CWE-125 (Out-of-bounds Read), CWE-787 (Out-of-bounds Write), CWE-20 (Improper Input Validation).
- Are there public exploits for Fedora Project vulnerabilities?
- Yes — 612 of Fedora Project's CVEs have a known public exploit.
- How many critical Fedora Project vulnerabilities are there?
- Fedora Project has 548 critical and 2,421 high-severity CVEs.
- What is the average severity of Fedora Project CVEs?
- The average CVSS base score across Fedora Project's scored CVEs is 7.0.