CVEs from 2017

11,960 normalized CVEs published or assigned in this year.

Total

11,960

critical

critical 1,647

high

high 5,043

medium

medium 4,165

low

low 159

% Critical

13.8%

% with KEV

0.7%

% with exploit

0.8%

Top vendors

ibm 4,028
oracle 3,376
apache 1,516
imagemagick 1,426
cisco 1,376
f5 1,265
microsoft 1,181
adobe 1,082

Top products

imagemagick 1,426
joomla\! 932
kanboard 848
ntp 762
tomcat 676
mahara 572
postgresql 492
asterisk 435

Top packages

critical high medium low unknown

0

KEV Has exploit

CVE	Severity	CVSS	Risk	Published	Description	Impact
CVE-2017-9791	unknown	—	1.5	4y ago	Code execution in Apache Struts 1 plugin
CVE-2017-1000353	unknown	—	1.5	4y ago	Deserialization of Untrusted Data in Jenkins