CVEdetails.com the ultimate security vulnerability data source
(e.g.: CVE-2009-1234 or 2010-1234 or 20101234)
Log In   Register
  What's the CVSS score of your company?
Vulnerability Feeds & WidgetsNew   www.itsecdb.com  

Redhat » Enterprise Linux : Vulnerability Statistics

Vulnerability Feeds & Widgets

Vulnerability Trends Over Time

Year # of Vulnerabilities DoS Code Execution Overflow Memory Corruption Sql Injection XSS Directory Traversal Http Response Splitting Bypass something Gain Information Gain Privileges CSRF File Inclusion # of exploits
2002 2 1
2003 9 6 2 1
2004 30 14 9 8 2 1 1
2005 75 36 22 18 1 1 2 1 5
2006 5 1 1
2007 22 11 5 4 1 3 3
2008 10 6 1 1 1 2
2010 5 4 2 1 1 1
2011 8 8 4 1 2
2012 24 18 2 4 1 1
2013 74 34 5 17 2 8 16 8 1
2014 39 25 9 6 2 1 5 4 2 1
2015 51 14 10 8 3 1 3 1 1
2016 61 12 6 3 2 4 6 1
2017 25 8 7 8 4 1 2 1 1
2018 169 18 13 28 6 1 1 4 8 13
2019 188 42 22 33 2 1 9 14 10 1
2020 99 26 15 13 2 1 5 2 7 4 1
2021 131 18 14 28 4 1 1 1 4 10 1
Total 1027 302 145 184 29 3 12 18 59 72 31 1 2
% Of All 29.4 14.1 17.9 2.8 0.3 1.2 1.8 0.0 5.7 7.0 3.0 0.1 0.0

Warning : Vulnerabilities with publish dates before 1999 are not included in this table and chart. (Because there are not many of them and they make the page look bad; and they may not be actually published in those years.)

Vulnerabilities By Year
2
9
30
75
5
22
10
5
8
24
74
39
51
61
25
169
188
99
131
  2002 2
2003 9
2004 30
2005 75
2006 5
2007 22
2008 10
2010 5
2011 8
2012 24
2013 74
2014 39
2015 51
2016 61
2017 25
2018 169
2019 188
2020 99
2021 131
Vulnerabilities By Type
302
145
184
59
72
31
29
18
12
1
3
  Denial of Service 302
Execute Code 145
Overflow 184
Bypass Something 59
Gain Information 72
Gain Privilege 31
Memory Corruption 29
Directory Traversal 18
XSS 12
CSRF 1
Sql Injection 3

Click on legend names to show/hide lines for vulnerability types
If you can't see MS Office style charts above then it's time to upgrade your browser!
P.S: Charts may not be displayed properly especially if there are only a few data points.

This page lists vulnerability statistics for all versions of Redhat Enterprise Linux. Vulnerability statistics provide a quick overview for security vulnerabilities of this software. You can view versions of this product or security vulnerabilities related to Redhat Enterprise Linux.

CVE is a registred trademark of the MITRE Corporation and the authoritative source of CVE content is MITRE's CVE web site. CWE is a registred trademark of the MITRE Corporation and the authoritative source of CWE content is MITRE's CWE web site. OVAL is a registered trademark of The MITRE Corporation and the authoritative source of OVAL content is MITRE's OVAL web site.
Use of this information constitutes acceptance for use in an AS IS condition. There are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. It is the responsibility of user to evaluate the accuracy, completeness or usefulness of any information, opinion, advice or other content. EACH USER WILL BE SOLELY RESPONSIBLE FOR ANY consequences of his or her direct or indirect use of this web site. ALL WARRANTIES OF ANY KIND ARE EXPRESSLY DISCLAIMED. This site will NOT BE LIABLE FOR ANY DIRECT, INDIRECT or any other kind of loss.