Vendor Scorecards

Compare security responsiveness across software vendors

Based on 322,026 CVEs processed. Coverage: 99.4% CRITICAL, 165.6% HIGH, 185.5% MEDIUM.

A<7d B<30d C<90d D<180d F180d+
Clear

Showing 20 of 194 vendors (with 5+ CVEs)

Vendor CVEs ▼ Response Patch % At Risk Score Grade
aEnrich 1,551 - 4% 33 50 N/A
Apache 949 - 0% 21 45 N/A
Unknown 874 - - 2 65 N/A
WordPress.org 614 - 1% 7 51 N/A
GNU Project 482 - 0% 12 51 N/A
Microsoft 442 335d 3% 39 22 F
IBM 302 - 6% 38 52 N/A
Linux 298 - 81% 5 69 N/A
Not specified 258 - - 3 60 N/A
unknown 227 - - 1 70 N/A
OpenSSL Project 215 - - 2 65 N/A
Automattic 157 - 4% 1 72 N/A
Red Hat 156 - 1% 14 51 N/A
DynamiApps 134 - - 5 50 N/A
Adobe 108 - - 0 75 N/A
Apple 107 - - 2 66 N/A
Sun Microsystems 82 - 22% 21 56 N/A
Linux Foundation 70 - 66% 3 77 N/A
PHP Group 70 - - 2 65 N/A
PHPMailer Project 69 - - 7 50 N/A