- How many CVEs does openbsd have?
- openbsd has 362 published CVE records since 1999, including 28 in the last two years.
- How many openbsd CVEs are in CISA KEV?
- Yes — 1 of openbsd's CVEs are listed in CISA's Known Exploited Vulnerabilities catalog, confirmed exploited in the wild and carrying a CISA remediation deadline.
- Which openbsd products have the most CVEs?
- The openbsd products with the most published CVEs are OpenBSD, OpenSSH, src, libressl, opensmtpd.
- What are the most common weakness types in openbsd CVEs?
- openbsd's CVEs most often map to these CWE weakness types: CWE-476 (NULL Pointer Dereference), CWE-119 (Improper Restriction of Operations within the Bounds of a Memory Buffer), CWE-400 (Uncontrolled Resource Consumption), CWE-200 (Exposure of Sensitive Information to an Unauthorized Actor).
- Are there public exploits for openbsd vulnerabilities?
- Yes — 91 of openbsd's CVEs have a known public exploit.
- How many critical openbsd vulnerabilities are there?
- openbsd has 46 critical and 123 high-severity CVEs.
- What is the average severity of openbsd CVEs?
- The average CVSS base score across openbsd's scored CVEs is 6.4.