- How many CVEs does Novell have?
- Novell has 675 published CVE records since 1999, including 4 in the last two years.
- How many Novell CVEs are in CISA KEV?
- Yes — 3 of Novell's CVEs are listed in CISA's Known Exploited Vulnerabilities catalog, confirmed exploited in the wild and carrying a CISA remediation deadline.
- Which Novell products have the most CVEs?
- The Novell products with the most published CVEs are suse linux enterprise server, suse linux enterprise desktop, netware, groupwise, suse linux enterprise software development kit.
- What are the most common weakness types in Novell CVEs?
- Novell's CVEs most often map to these CWE weakness types: CWE-78 (Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')), CWE-200 (Exposure of Sensitive Information to an Unauthorized Actor), CWE-22 (Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')), CWE-250 (Execution with Unnecessary Privileges).
- Are there public exploits for Novell vulnerabilities?
- Yes — 143 of Novell's CVEs have a known public exploit.
- How many critical Novell vulnerabilities are there?
- Novell has 157 critical and 171 high-severity CVEs.
- What is the average severity of Novell CVEs?
- The average CVSS base score across Novell's scored CVEs is 6.7.