Last 10 Years published CVEs for 2018 - Vendor Microsoft

Year CVEs
2018 658
2017 698
2016 491
2015 568
2014 374
2013 345
2012 172
2011 253
2010 317
2009 236
Ten Year Statistics

Monltly published CVEs for 2018 - Vendor Microsoft

Month-Year CVEs
12-2018 40
11-2018 58
10-2018 50
09-2018 64
08-2018 51
07-2018 14
06-2018 51
05-2018 69
04-2018 69
03-2018 74
02-2018 58
01-2018 60
Monlty Year Statistics

Published CVEs by CVSS range for 2018 - Vendor Microsoft

CVSS Range CVEs
CVSS < 3 91
3 < CVSS <= 5 183
5 < CVSS <= 7.5 114
CVSS > 7.5 270
CVSS Range Year Statistics

Yearly published CVEs by CVSS metric: Vector for 2018 - Vendor Microsoft

Vector CVEs
NETWORK 455
LOCAL 191
ADJACENT_NETWORK 12
CVSS metric vector Year Statistics

Yearly published CVEs by CVSS metric: Complexity for 2018 - Vendor Microsoft

Complexity CVEs
MEDIUM 292
LOW 192
HIGH 174
CVSS metric complexity Year Statistics

Yearly published CVEs by CVSS metric: Authentication for 2018 - Vendor Microsoft

Authentication CVEs
NONE 586
SINGLE_INSTANCE 72
MULTIPLE_INSTANCES 0
CVSS metric authentication Year Statistics

Yearly published CVEs by CVSS metric: Confidentiality for 2018 - Vendor Microsoft

Confidentiality CVEs
COMPLETE 333
PARTIAL 244
NONE 81
CVSS metric confidentiality Year Statistics

Yearly published CVEs by CVSS metric: Integrity for 2018 - Vendor Microsoft

Integrity CVEs
COMPLETE 331
NONE 182
PARTIAL 145
CVSS metric integrity Year Statistics

Yearly published CVEs by CVSS metric: Availability for 2018 - Vendor Microsoft

Availability CVEs
COMPLETE 345
NONE 220
PARTIAL 93
CVSS metric availability Year Statistics

Top 10 CWE for 2018 - Vendor Microsoft

# CVEs CWE ID CWE Name
#1 230 119 Improper Restriction of Operations within the Bounds of a Memory Buffer
#2 139 200 Information Exposure
#3 132 264 Permissions, Privileges, and Access Controls
#4 43 20 Improper Input Validation
#5 38 254 Security Features
#6 19 79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
#7 18 19 Data Handling
#8 9 284 Improper Access Control
#9 7 611 Improper Restriction of XML External Entity Reference ('XXE')
#10 3 94 Improper Control of Generation of Code ('Code Injection')
Top CWE Year Statistics

Download zipped file statistics for 2018 - Vendor Microsoft

Download Zip with complete statistics