Android, Debian & Ubuntu Top List Of CVE Vulnerabilities In 2016
Written by Michael Larabel in Operating Systems on 3 January 2017 at 07:52 AM EST. 34 Comments
On a CVE basis for the number of distinct vulnerabilities, Android is ranked as having the most vulnerability of any piece of software for 2016 followed by Debian and Ubuntu Linux while coming in behind them is the Adobe Flash Player.

The tracking service has compiled a list of software with the most active CVEs. The list isn't limited to just operating systems but all software with Common Vulnerabilities and Exposures.

Android topped the list with 523 distinct vulnerabilities for 2016 followed by Debian Linux with 319 vulnerabilities and then Ubuntu Linux with 276 vulnerabilities. The Linux Kernel itself was listed with 216 vulnerabilities while mac OS X had 215 and Windows 10 at 172.

The applications with the most vulnerabilities for 2016 were Flash Player followed by Acrobat Reader and Acrobat.

Keep in mind this list is compiled based upon raw CVEs, not just open CVEs or other weighted criteria. With that said, for those curious about the software with the most CVEs for 2016 can find them at

In comparison, for the 2015 list from the same source, mac OS X was at the top of the list with 444 vulnerabilities while Ubuntu Linux came in at 7th with 259 vulnerabilities as the Linux distro with the most CVEs of that year.
Related News
About The Author
Author picture

Michael Larabel is the principal author of and founded the site in 2004 with a focus on enriching the Linux hardware experience. Michael has written more than 20,000 articles covering the state of Linux hardware support, Linux performance, graphics drivers, and other topics. Michael is also the lead developer of the Phoronix Test Suite, Phoromatic, and automated benchmarking software. He can be followed via Twitter or contacted via

Popular News This Week