month report
May 2004
Data as of Jun 11, 2026, 06:04 UTCSnapshot v1 Sources CVEList V5+NVD+GHSA+CSAF+FSTEC BDU+CISA KEV+EPSS+Nuclei templates Methodology →
May 2004 closed with 53 published CVEs. 8 criticals, microsoft led volume, mostly via ie. Top weakness class — CWE-88 (3 CVE). 10 vendors cracked the top-100 for the first time.
Total CVEs
53
— MoM— YoY
Severity mix
8 / 14
critical / high
KEV added
0
0 ransomware-linked
Nuclei coverage
1.9%
1 CVEs with templates
Time to exploit
How fast the community ships detection after a CVE drops.
Days → Nuclei (median)
7974.7
n=1
Within 7 days
0.0%
Within 30 days
0.0%
Days → KEV (median)
—
n=0
Weakness × Vendor
What's spreading where in May 2004
Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.
Most discussed CVEs — May 2004
No CVE mentions in the news this month yet.
First time in top-100
Vendors never in top-100 in the prior 24 periods.
- #4gentoo5 CVE
- #6slackware4 CVE
- #9gentoo foundation inc.3 CVE
- #10midnight commander3 CVE
- #12bea2 CVE
- #13clearswift2 CVE
- #14f-secure2 CVE
- #16rarlab2 CVE
- #17stalker2 CVE
- #19tsugio okamoto2 CVE
Top vendors
Ranked by distinct CVE count this period.
- 7 CVECVSS 5.2PoC 3ie (3) · windows xp (3) · internet explorer (2)
- 7 CVE2 critCVSS 5.8PoC 3propack (6) · irix (1)
- 5 CVECVSS 6.2PoC 1mac os x (4) · mac os x server (2) · quicktime (1)
- 5 CVE1 critCVSS 5.8NEWlinux (5)
- 5 CVE1 critCVSS 6.8PoC 3red hat enterprise linux (3) · lha (2) · fedora core (2)
- 4 CVE1 critCVSS 4.8NEWPoC 1slackware linux (4)
- 4 CVE1 critCVSS 6.2debian gnu/linux (4)
- 3 CVE1 critCVSS 8.3debian linux (3)
- 3 CVECVSS 4.7NEWPoC 1gentoo linux (3)
- 3 CVE1 critCVSS 5.7NEWmidnight commander (3)
- 3 CVE1 critCVSS 5.9norton internet security (3) · client firewall (3) · client security (3)
- 2 CVECVSS 4.8NEWweblogic server (2)
- 2 CVE1 critCVSS 8.2NEWPoC 2mailsweeper (2)
- 2 CVE1 critCVSS 8.2NEWPoC 2f-secure anti-virus (2) · f-secure for firewalls (2) · f-secure internet security (2)
- 2 CVECVSS 3.4linux kernel (2)
- 2 CVE1 critCVSS 8.2NEWPoC 2winrar (2)
- 2 CVE1 critCVSS 8.2NEWPoC 2cgpmcafee (2)
- 2 CVECVSS 6.3secure linux (2)
- 2 CVE1 critCVSS 8.2NEWPoC 2lha (2)
- 2 CVECVSS 7.5NEWPoC 1exim (2)
- 2 CVE1 critCVSS 8.2PoC 2winzip (2)
- 1 CVECVSS 7.5http server (1)
- 1 CVECVSS 7.5NEWPoC 1cyrus imap server (1)
- 1 CVE1 critCVSS 10.0firewall-1 (1) · next generation (1) · ng-ai (1)
- 1 CVECVSS 7.5NEWcvs (1)
- 1 CVECVSS 5.0NEWPoC 1fanuc (1)
- 1 CVE1 critCVSS 10.0NEWlibtasn1 (1)
- 1 CVECVSS 2.1flim (1)
- 1 CVE1 critCVSS 9.8NEWheimdal (1)
- 1 CVECVSS 5.0NEW802.11 wireless protocol (1)
- 1 CVECVSS 5.0PoC 1junos (1)
- 1 CVECVSS 5.0NEWPoC 1junos (1)
- 1 CVECVSS 5.0NEWracoon (1)
- 1 CVECVSS 7.5konqueror (1)
- 1 CVECVSS 5.0NEWlibpng (1)
- 1 CVECVSS 4.6mandrake linux (1)
- 1 CVECVSS 5.0NEWPoC 1network data loss prevention (1)
- 1 CVECVSS 5.0NEWPoC 1mcafee data loss prevention (1)
- 1 CVECVSS 2.6mozilla (1)
- 1 CVE1 critCVSS 10.0NEWmplayer (1)
- 1 CVECVSS 5.0PoC 1netbsd (1)
- 1 CVE1 critCVSS 10.0NEWsideminder affiliate agent (1)
- 1 CVECVSS 5.0NEWPoC 1nfs-utils (1)
- 1 CVECVSS 4.6openbsd (1)
- 1 CVECVSS 5.0NEWPoC 1openpgp (1)
- 1 CVECVSS 5.0NEWopenpkg (1)
- 1 CVECVSS 2.6NEWopera browser (1)
- 1 CVECVSS 5.0PoC 1solaris (1)
- 1 CVECVSS 7.5NEWproftpd (1)
- 1 CVECVSS 5.0NEWNuclei 1titan ftp server (1)
| # | Vendor | CVEs | Crit | KEV | Nuclei | Signals | Top products | Δ | |
|---|---|---|---|---|---|---|---|---|---|
| 1 | microsoft | 7 | · | · | · | PoC 3 | ie (3) · windows xp (3) · internet explorer (2) | — | |
| 2 | sgi | 7 | 2 | · | · | PoC 3 | propack (6) · irix (1) | — | |
| 3 | apple | 5 | · | · | · | PoC 1 | mac os x (4) · mac os x server (2) · quicktime (1) | — | |
| 4 | gentoo | 5 | 1 | · | · | NEW | linux (5) | — | |
| 5 | redhat | 5 | 1 | · | · | PoC 3 | red hat enterprise linux (3) · lha (2) · fedora core (2) | — | |
| 6 | slackware | 4 | 1 | · | · | NEWPoC 1 | slackware linux (4) | — | |
| 7 | сообщество свободного программного обеспечения | 4 | 1 | · | · | debian gnu/linux (4) | — | ||
| 8 | debian | 3 | 1 | · | · | debian linux (3) | — | ||
| 9 | gentoo foundation inc. | 3 | · | · | · | NEWPoC 1 | gentoo linux (3) | — | |
| 10 | midnight commander | 3 | 1 | · | · | NEW | midnight commander (3) | — | |
| 11 | symantec | 3 | 1 | · | · | norton internet security (3) · client firewall (3) · client security (3) | — | ||
| 12 | bea | 2 | · | · | · | NEW | weblogic server (2) | — | |
| 13 | clearswift | 2 | 1 | · | · | NEWPoC 2 | mailsweeper (2) | — | |
| 14 | f-secure | 2 | 1 | · | · | NEWPoC 2 | f-secure anti-virus (2) · f-secure for firewalls (2) · f-secure internet security (2) | — | |
| 15 | linux | 2 | · | · | · | linux kernel (2) | — | ||
| 16 | rarlab | 2 | 1 | · | · | NEWPoC 2 | winrar (2) | — | |
| 17 | stalker | 2 | 1 | · | · | NEWPoC 2 | cgpmcafee (2) | — | |
| 18 | trustix | 2 | · | · | · | secure linux (2) | — | ||
| 19 | tsugio okamoto | 2 | 1 | · | · | NEWPoC 2 | lha (2) | — | |
| 20 | university of cambridge | 2 | · | · | · | NEWPoC 1 | exim (2) | — | |
| 21 | winzip | 2 | 1 | · | · | PoC 2 | winzip (2) | — | |
| 22 | apache | 1 | · | · | · | http server (1) | — | ||
| 23 | carnegie mellon university | 1 | · | · | · | NEWPoC 1 | cyrus imap server (1) | — | |
| 24 | checkpoint | 1 | 1 | · | · | firewall-1 (1) · next generation (1) · ng-ai (1) | — | ||
| 25 | cvs | 1 | · | · | · | NEW | cvs (1) | — | |
| 26 | fanuc corp. | 1 | · | · | · | NEWPoC 1 | fanuc (1) | — | |
| 27 | free software foundation inc. | 1 | 1 | · | · | NEW | libtasn1 (1) | — | |
| 28 | gnu | 1 | · | · | · | flim (1) | — | ||
| 29 | heimdal project | 1 | 1 | · | · | NEW | heimdal (1) | — | |
| 30 | ieee | 1 | · | · | · | NEW | 802.11 wireless protocol (1) | — | |
| 31 | juniper | 1 | · | · | · | PoC 1 | junos (1) | — | |
| 32 | juniper networks | 1 | · | · | · | NEWPoC 1 | junos (1) | — | |
| 33 | kame | 1 | · | · | · | NEW | racoon (1) | — | |
| 34 | kde | 1 | · | · | · | konqueror (1) | — | ||
| 35 | libpng | 1 | · | · | · | NEW | libpng (1) | — | |
| 36 | mandrakesoft | 1 | · | · | · | mandrake linux (1) | — | ||
| 37 | mcafee | 1 | · | · | · | NEWPoC 1 | network data loss prevention (1) | — | |
| 38 | mcafee inc. | 1 | · | · | · | NEWPoC 1 | mcafee data loss prevention (1) | — | |
| 39 | mozilla | 1 | · | · | · | mozilla (1) | — | ||
| 40 | mplayer | 1 | 1 | · | · | NEW | mplayer (1) | — | |
| 41 | netbsd | 1 | · | · | · | PoC 1 | netbsd (1) | — | |
| 42 | netegrity | 1 | 1 | · | · | NEW | sideminder affiliate agent (1) | — | |
| 43 | nfs | 1 | · | · | · | NEWPoC 1 | nfs-utils (1) | — | |
| 44 | openbsd | 1 | · | · | · | openbsd (1) | — | ||
| 45 | openpgp | 1 | · | · | · | NEWPoC 1 | openpgp (1) | — | |
| 46 | openpkg | 1 | · | · | · | NEW | openpkg (1) | — | |
| 47 | opera | 1 | · | · | · | NEW | opera browser (1) | — | |
| 48 | oracle | 1 | · | · | · | PoC 1 | solaris (1) | — | |
| 49 | proftpd project | 1 | · | · | · | NEW | proftpd (1) | — | |
| 50 | south river technologies | 1 | · | · | 1 | NEWNuclei 1 | titan ftp server (1) | — |
Sectors
Solution categories ranked by distinct CVE count this period.
- Operating Systems34 CVE9 crit18 vendorsCVSS 6.0linux (5) · debian gnu/linux (4) · slackware linux (4)
- Security Products13 CVE17 crit9 vendorsCVSS 10.0client firewall (3) · client security (3) · norton internet security (3)
- Consumer Software8 CVE6 crit8 vendorsCVSS 10.0midnight commander (3) · lha (2) · winrar (2)
- Mobile Apps5 CVE1 vendorsCVSS 6.2mac os x (4) · mac os x server (2) · quicktime (1)
- OSS Libraries5 CVE4 vendorsCVSS 6.2exim (2) · cadaver (1) · flim (1)
- Enterprise Software4 CVE3 vendorsCVSS 5.0weblogic server (2)
- Communications3 CVE1 crit2 vendorsCVSS 8.0cgpmcafee (2) · cyrus imap server (1)
- DevTools & CI3 CVE3 vendorsCVSS 7.5cvs (1) · subversion (1)
- 4 vendorsCVSS 7.5junos (2)
- Web & CMS Plugins1 CVE1 vendorsCVSS 7.5http server (1)
- Databases1 CVE2 vendorsCVSS 5.0solaris (2)
- Unclassified5 CVE1 crit5 vendorsCVSS 5.9802.11 wireless protocol (1) · fanuc (1) · libtasn1 (1)
| Sector | CVEs | Crit | KEV | Vendors | Products | Avg CVSS | Top products |
|---|---|---|---|---|---|---|---|
| Operating Systems▸ 3 | 34 | 9 | · | 18 | 32 | 6.0 | linux (5) · debian gnu/linux (4) · slackware linux (4) |
| Security Products▸ 3 | 13 | 17 | · | 9 | 20 | 10.0 | client firewall (3) · client security (3) · norton internet security (3) |
| Consumer Software▸ 3 | 8 | 6 | · | 8 | 8 | 10.0 | midnight commander (3) · lha (2) · winrar (2) |
| Mobile Apps▸ 1 | 5 | · | · | 1 | 3 | 6.2 | mac os x (4) · mac os x server (2) · quicktime (1) |
| OSS Libraries▸ 1 | 5 | · | · | 4 | 5 | 6.2 | exim (2) · cadaver (1) · flim (1) |
| Enterprise Software▸ 3 | 4 | · | · | 3 | 3 | 5.0 | weblogic server (2) |
| Communications▸ 1 | 3 | 1 | · | 2 | 2 | 8.0 | cgpmcafee (2) · cyrus imap server (1) |
| DevTools & CI▸ 2 | 3 | · | · | 3 | 3 | 7.5 | cvs (1) · subversion (1) |
| Networking Infrastructure▸ 3 | 3 | · | · | 4 | 3 | 7.5 | junos (2) |
| Web & CMS Plugins▸ 1 | 1 | · | · | 1 | 1 | 7.5 | http server (1) |
| Databases▸ 1 | 1 | · | · | 2 | 1 | 5.0 | solaris (2) |
| Unclassified | 5 | 1 | · | 5 | 5 | 5.9 | 802.11 wireless protocol (1) · fanuc (1) · libtasn1 (1) |
Weakness × Sector
Which weaknesses hit which solution categories in May 2004
Cells shaded by share of the sector's hottest weakness. Click a row to open the sector history.