Cyber Resilience

← All vendors

Debian

CPE vendor key: debian · 776 CVEs published in the last 24 months.

CVEs (365 d)
467
= prior 30d
Avg CVSS (365 d)
6.33
over 467 CVEs
Avg EPSS pct (365 d)
0.09
higher = more likely exploited
KEV hit rate (365 d)
1.5%
7 of 467 added to CISA KEV
LLM-credited CVEs
0
 

Monthly CVE volume — last 24 months

2024202520260201
Each point is one calendar month. Bars in the severity card to the right slice the same volume by CVSS band.

Severity mix

CritHighMedLow
Stacked by CVSS band (Critical / High / Medium / Low) using the best available metric per CVE.

Top affected products (24 mo)

debian_linux
769
yubiserver
2
dpkg
2
matplotlib
1
pdns
1
pycode-browser
1
devscripts
1
Distinct CVEs that include each product in their CPE configuration.

Top CWEs (24 mo)

CWE-476
131
CWE-416
85
CWE-125
59
CWE-787
48
CWE-401
33
CWE-908
27
CWE-667
25
CWE-362
23
CWE-190
15
CWE-415
14
Distinct CVEs assigned each weakness.

Recent CISA KEV adds (last 12 months)

No vendor-attributed KEV adds in the last 12 months.

Filtered to KEV rows where the CISA vendor name matches this vendor, to drop cross-OS noise (e.g. third-party Windows apps that CPE-map to Microsoft).

LLM-credited CVEs from this vendor

No LLM-credited CVEs for this vendor yet.

From mythos_attributed_cves: CVEs whose NVD description or vendor advisory credits an LLM-assisted discovery. Confidence is high for every row.

Generated 19 June 2026 13:18 UTC <span class="time-ago" data-iso="2026-06-19T13:18:30Z"></span>.