COOEY // HUBcompliance · community · intelligence

FAIL // hall of shame

The security failures of FedRAMP vendors, their competitors, and the hardware they ship — ranked by zero-days, remote code execution, active exploitation, sheer embarrassment, and False-Claims-Act recoveries. A dex.sgc.ai RAG curator writes each event's summary and scores how avoidable the failure was; every name links to its dossier.

722
on the board
1
zero-days
243
RCEs
102
exploited
554
assessed
$82M
FCA recovered
Overview☣ Most embarrassing◐ Most zero-days⚡ Most RCEs⌖ Most exploited⚖ Biggest FCA recoveries
All playersCompaniesVendorsProducts / HW ◧ FedRAMP only

⌖ Most exploited

Count of their CVEs on CISA's Known-Exploited-Vulnerabilities catalog — actively used against defenders.

  1. 41
    Arista vendor
    ⚡ 1 ⌖ 1 shame 65
    1on KEV
  2. 42
    ⚡ 1 ⌖ 1 shame 85
    1on KEV
◄ prev page 2 / 2 next ► · 42 total