Head-to-head
Trellix/McAfee vs WSO2
WSO2 carries 34.0× the disclosed CVE volume of Trellix/McAfee. Volume reflects disclosure practice and install base as much as code quality — read it with the severity mix. Sourced from the NIST NVD; lower counts indicate a smaller disclosed vulnerability surface — not necessarily lower risk.
01
Disclosure record
Bars are normalized per row to the larger value; the leading count is emphasized.
| Trellix/McAfee | Metric | WSO2 | ||
|---|---|---|---|---|
| 2 | Total CVEs | 68 | ||
| 0 | Critical | 9 | ||
| 0 | High | 11 | ||
| 2 | Medium | 44 | ||
| 0 | Low | 4 | ||
| 38 | Open in latest | 69 | ||
| 2 | Product families | 1 |
02
Risk profile
Each severity band as a share of the vendor's own total — strips out raw volume so the profiles compare directly.
Trellix/McAfee
0.0% critical- Critical
- 00.0%
- High
- 00.0%
- Medium
- 2100.0%
- Low
- 00.0%
WSO2
13.2% critical- Critical
- 913.2%
- High
- 1116.2%
- Medium
- 4464.7%
- Low
- 45.9%
03
Recent activity
Latest in-window disclosures per vendor, newest first. Each ID links to its NVD record.
Trellix/McAfee
| CVE | Severity | CVSS | Published |
|---|---|---|---|
| CVE-2022-1254(opens NVD record) | Medium | 6.1 | Apr 20, 2022 |
| CVE-2021-45105(opens NVD record) | Medium | 5.9 | Dec 18, 2021 |
| CVE-2021-4038(opens NVD record) | Medium | 4.8 | Dec 9, 2021 |
WSO2
| CVE | Severity | CVSS | Published |
|---|---|---|---|
| CVE-2026-4249(opens NVD record) | High | 8.6 | Jul 6, 2026 |
| CVE-2025-8591(opens NVD record) | Medium | 6.1 | Jul 6, 2026 |
| CVE-2024-1248(opens NVD record) | Medium | 4.8 | Jul 4, 2026 |
| CVE-2025-13475(opens NVD record) | Low | 3.5 | Jul 4, 2026 |
| CVE-2026-2053(opens NVD record) | High | 8.3 | Jun 26, 2026 |
| CVE-2025-9973(opens NVD record) | Medium | 6.4 | May 11, 2026 |