Head-to-head
OpenVPN vs Trellix/McAfee
Trellix/McAfee carries 1.3× the disclosed CVE volume of OpenVPN. Volume reflects disclosure practice and install base as much as code quality — read it with the severity mix. Sourced from the NIST NVD; lower counts indicate a smaller disclosed vulnerability surface — not necessarily lower risk.
01
Disclosure record
Bars are normalized per row to the larger value; the leading count is emphasized.
| OpenVPN | Metric | Trellix/McAfee | ||
|---|---|---|---|---|
| 60 | Total CVEs | 80 | ||
| 8 | Critical | 5 | ||
| 30 | High | 27 | ||
| 18 | Medium | 42 | ||
| 4 | Low | 6 | ||
| 27 | Open in latest | 38 | ||
| 1 | Product families | 2 |
02
Risk profile
Each severity band as a share of the vendor's own total — strips out raw volume so the profiles compare directly.
OpenVPN
13.3% critical- Critical
- 813.3%
- High
- 3050.0%
- Medium
- 1830.0%
- Low
- 46.7%
Trellix/McAfee
6.3% critical- Critical
- 56.3%
- High
- 2733.8%
- Medium
- 4252.5%
- Low
- 67.5%
03
Recent activity
Latest in-window disclosures per vendor, newest first. Each ID links to its NVD record.
OpenVPN
| CVE | Severity | CVSS | Published |
|---|---|---|---|
| CVE-2026-9560(opens NVD record) | High | 7.8 | May 26, 2026 |
| CVE-2026-34617(opens NVD record) | High | 8.7 | Apr 14, 2026 |
| CVE-2026-34615(opens NVD record) | Critical | 9.3 | Apr 14, 2026 |
| CVE-2026-34614(opens NVD record) | Medium | 6.1 | Apr 14, 2026 |
| CVE-2026-27303(opens NVD record) | Critical | 9.6 | Apr 14, 2026 |
| CVE-2026-27246(opens NVD record) | Critical | 9.3 | Apr 14, 2026 |
Trellix/McAfee
| CVE | Severity | CVSS | Published |
|---|---|---|---|
| CVE-2022-1254(opens NVD record) | Medium | 6.1 | Apr 20, 2022 |
| CVE-2021-45105(opens NVD record) | Medium | 5.9 | Dec 18, 2021 |
| CVE-2021-4038(opens NVD record) | Medium | 4.8 | Dec 9, 2021 |
| CVE-2021-20026(opens NVD record) | High | 8.8 | May 27, 2021 |
| CVE-2021-3450(opens NVD record) | High | 7.4 | Mar 25, 2021 |
| CVE-2021-3449(opens NVD record) | Medium | 5.9 | Mar 25, 2021 |