month report
November 2007
Data as of Jun 11, 2026, 06:04 UTCSnapshot v1 Sources CVEList V5+NVD+GHSA+CSAF+FSTEC BDU+CISA KEV+EPSS+Nuclei templates Methodology →
November 2007 closed with 486 published CVEs. 76 criticals, apple led volume, mostly via mac os x. Top weakness class — CWE-119 (65 CVE). 10 vendors cracked the top-100 for the first time.
Total CVEs
486
— MoM— YoY
Severity mix
76 / 144
critical / high
KEV added
0
0 ransomware-linked
Nuclei coverage
0.4%
2 CVEs with templates
Time to exploit
How fast the community ships detection after a CVE drops.
Days → Nuclei (median)
6690.4
n=2
Within 7 days
0.0%
Within 30 days
0.0%
Days → KEV (median)
—
n=0
Weakness × Vendor
What's spreading where in November 2007
Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.
119Memory Buffer Bounds79XSS89SQL Injection264CWE-26420Improper Input Validation22Path Traversal94Code Injection200Information Exposure287Improper Authentication399CWE-399apple91821132ibm64613сообщество свободного программного обеспечения4121pcre4wireshark41microsoft411redhat2111symantec22111ingate121novell inc.31red hat inc.5citrix12
Most discussed CVEs — November 2007
No CVE mentions in the news this month yet.
First time in top-100
Vendors never in top-100 in the prior 24 periods.
- #5pcre11 CVE
- #7wireshark11 CVE
- #16flatnuke34 CVE
- #18openbase international ltd4 CVE
- #20softbizscripts4 CVE
- #21tug4 CVE
- #22acdsee3 CVE
- #24bosdev3 CVE
- #25bti-tracker3 CVE
- #27jportal3 CVE
Top vendors
Ranked by distinct CVE count this period.
- 42 CVE15 critCVSS 7.3PoC 2mac os x (34) · mac os x server (19) · quicktime (5)
- 28 CVE8 critCVSS 7.1db2 universal database (9) · aix (7) · websphere application server (3)
- 12 CVE1 critCVSS 6.4suse linux enterprise (9) · opensuse (3)
- 12 CVE1 critCVSS 7.0PoC 2debian gnu/linux (12)
- 11 CVECVSS 6.0NEWpcre (10) · perl-compatible regular expression library (1)
- 11 CVE2 critCVSS 6.1PoC 2enterprise linux (3) · red hat enterprise linux (2) · conga (1)
- 11 CVE3 critCVSS 7.0NEWPoC 1wireshark (11)
- 9 CVE6 critCVSS 8.1windows xp (6) · windows vista (4) · windows 2000 (4)
- 9 CVE3 critCVSS 6.9backupexec system recovery (2) · mail security (2) · web security (1)
- 8 CVE3 critCVSS 7.2ingate firewall (8) · ingate siparator (8)
- 5 CVECVSS 4.5netscaler (3) · access gateway (1) · metaframe presentation server (1)
- 5 CVECVSS 4.7cosminexus application server enterprise (2) · cosminexus application server standard (2) · cosminexus developer light version 6 (2)
- 5 CVECVSS 6.7linux kernel (5)
- 5 CVE1 critCVSS 6.9PoC 2javamail (1) · net connect software (1) · solaris (1)
- 4 CVECVSS 6.2ethereal (4)
- 4 CVECVSS 5.7NEWPoC 4flatnuke3 (4)
- 4 CVE1 critCVSS 6.1firefox (4) · seamonkey (3)
- 4 CVE2 critCVSS 8.6NEWPoC 2openbase (4)
- 4 CVECVSS 4.9php (4)
- 4 CVECVSS 7.0NEWPoC 4ad management plus script (1) · banner exchange network script (1) · link directory script (1)
- 4 CVECVSS 5.5NEWPoC 1texlive 2007 (4)
- 3 CVE2 critCVSS 8.5NEWphoto editor (3) · photo manager (3) · pro photo manager (3)
- 3 CVE3 critCVSS 9.3keyview export sdk (3) · keyview filter sdk (3) · keyview viewer sdk (3)
- 3 CVECVSS 4.3NEWbosnews (2) · bosmarket business directory system (1)
- 3 CVECVSS 6.2NEWbti-tracker (3)
- 3 CVE1 critCVSS 6.8gentoo linux (3)
- 3 CVECVSS 7.5NEWPoC 3jportal web portal (3)
- 3 CVE1 critCVSS 7.2bordermanager (1) · client (1) · ichain (1)
- 3 CVECVSS 7.3database server (2) · e-business suite (1)
- 3 CVECVSS 4.2phpmyadmin (3)
- 3 CVECVSS 5.4PoC 1postnuke (3)
- 3 CVECVSS 6.4NEWPoC 3project alumni (3)
- 3 CVE3 critCVSS 9.7NEWPoC 1ssl vpn (2) · ssl vpn 200 (1) · ssl vpn2000\/4000 (1)
- 3 CVECVSS 5.7PoC 1tetex (3)
- 3 CVECVSS 5.6NEWtilde cms (3)
- 3 CVE1 critCVSS 6.8NEWPoC 3vigilecms (3)
- 3 CVECVSS 7.5NEWcase manager (2) · mass mailer (1)
- 3 CVE2 critCVSS 8.7xpdf (3)
- 2 CVE2 critCVSS 9.3NEWdocconverter (2)
- 2 CVE1 critCVSS 8.4PoC 1coldfusion (1) · shockwave player (1)
- 2 CVECVSS 7.2NEWPoC 2bcoos (2)
- 2 CVECVSS 4.2NEWbandersnatch (2)
- 2 CVECVSS 4.8NEWbitchx (2)
- 2 CVE2 critCVSS 9.7NEWPoC 1online anti-virus scanner (1) · antivirus (1) · internet security (1)
- 2 CVECVSS 5.0NEWi-gallery (2)
- 2 CVECVSS 3.9unified ip phone (1) · unified meetingplace (1)
- 2 CVECVSS 5.5NEWPoC 1contentcustomizer (2)
- 2 CVECVSS 7.2NEWPoC 2social networking script (2)
- 2 CVECVSS 7.0NEWasterisk (2)
- 2 CVECVSS 7.5NEWPoC 2eurologon cms (2)
| # | Vendor | CVEs | Crit | KEV | Nuclei | Signals | Top products | Δ | |
|---|---|---|---|---|---|---|---|---|---|
| 1 | apple | 42 | 15 | · | · | PoC 2 | mac os x (34) · mac os x server (19) · quicktime (5) | — | |
| 2 | ibm | 28 | 8 | · | · | db2 universal database (9) · aix (7) · websphere application server (3) | — | ||
| 3 | novell inc. | 12 | 1 | · | · | suse linux enterprise (9) · opensuse (3) | — | ||
| 4 | сообщество свободного программного обеспечения | 12 | 1 | · | · | PoC 2 | debian gnu/linux (12) | — | |
| 5 | pcre | 11 | · | · | · | NEW | pcre (10) · perl-compatible regular expression library (1) | — | |
| 6 | redhat | 11 | 2 | · | · | PoC 2 | enterprise linux (3) · red hat enterprise linux (2) · conga (1) | — | |
| 7 | wireshark | 11 | 3 | · | · | NEWPoC 1 | wireshark (11) | — | |
| 8 | microsoft | 9 | 6 | · | · | windows xp (6) · windows vista (4) · windows 2000 (4) | — | ||
| 9 | symantec | 9 | 3 | · | · | backupexec system recovery (2) · mail security (2) · web security (1) | — | ||
| 10 | ingate | 8 | 3 | · | · | ingate firewall (8) · ingate siparator (8) | — | ||
| 11 | citrix | 5 | · | · | · | netscaler (3) · access gateway (1) · metaframe presentation server (1) | — | ||
| 12 | hitachi | 5 | · | · | · | cosminexus application server enterprise (2) · cosminexus application server standard (2) · cosminexus developer light version 6 (2) | — | ||
| 13 | linux | 5 | · | · | · | linux kernel (5) | — | ||
| 14 | sun | 5 | 1 | · | · | PoC 2 | javamail (1) · net connect software (1) · solaris (1) | — | |
| 15 | ethereal group | 4 | · | · | · | ethereal (4) | — | ||
| 16 | flatnuke3 | 4 | · | · | · | NEWPoC 4 | flatnuke3 (4) | — | |
| 17 | mozilla | 4 | 1 | · | · | firefox (4) · seamonkey (3) | — | ||
| 18 | openbase international ltd | 4 | 2 | · | · | NEWPoC 2 | openbase (4) | — | |
| 19 | php | 4 | · | · | · | php (4) | — | ||
| 20 | softbizscripts | 4 | · | · | · | NEWPoC 4 | ad management plus script (1) · banner exchange network script (1) · link directory script (1) | — | |
| 21 | tug | 4 | · | · | · | NEWPoC 1 | texlive 2007 (4) | — | |
| 22 | acdsee | 3 | 2 | · | · | NEW | photo editor (3) · photo manager (3) · pro photo manager (3) | — | |
| 23 | autonomy | 3 | 3 | · | · | keyview export sdk (3) · keyview filter sdk (3) · keyview viewer sdk (3) | — | ||
| 24 | bosdev | 3 | · | · | · | NEW | bosnews (2) · bosmarket business directory system (1) | — | |
| 25 | bti-tracker | 3 | · | · | · | NEW | bti-tracker (3) | — | |
| 26 | gentoo foundation inc. | 3 | 1 | · | · | gentoo linux (3) | — | ||
| 27 | jportal | 3 | · | · | · | NEWPoC 3 | jportal web portal (3) | — | |
| 28 | novell | 3 | 1 | · | · | bordermanager (1) · client (1) · ichain (1) | — | ||
| 29 | oracle | 3 | · | · | · | database server (2) · e-business suite (1) | — | ||
| 30 | phpmyadmin | 3 | · | · | · | phpmyadmin (3) | — | ||
| 31 | postnuke software foundation | 3 | · | · | · | PoC 1 | postnuke (3) | — | |
| 32 | project alumni | 3 | · | · | · | NEWPoC 3 | project alumni (3) | — | |
| 33 | sonicwall | 3 | 3 | · | · | NEWPoC 1 | ssl vpn (2) · ssl vpn 200 (1) · ssl vpn2000\/4000 (1) | — | |
| 34 | tetex | 3 | · | · | · | PoC 1 | tetex (3) | — | |
| 35 | tilde | 3 | · | · | · | NEW | tilde cms (3) | — | |
| 36 | vigilecms | 3 | 1 | · | · | NEWPoC 3 | vigilecms (3) | — | |
| 37 | vu | 3 | · | · | · | NEW | case manager (2) · mass mailer (1) | — | |
| 38 | xpdf | 3 | 2 | · | · | xpdf (3) | — | ||
| 39 | activepdf | 2 | 2 | · | · | NEW | docconverter (2) | — | |
| 40 | adobe | 2 | 1 | · | · | PoC 1 | coldfusion (1) · shockwave player (1) | — | |
| 41 | bcoos | 2 | · | · | · | NEWPoC 2 | bcoos (2) | — | |
| 42 | bedita | 2 | · | · | · | NEW | bandersnatch (2) | — | |
| 43 | bitchx | 2 | · | · | · | NEW | bitchx (2) | — | |
| 44 | bitdefender | 2 | 2 | · | · | NEWPoC 1 | online anti-virus scanner (1) · antivirus (1) · internet security (1) | — | |
| 45 | blue-collar productions | 2 | · | · | · | NEW | i-gallery (2) | — | |
| 46 | cisco | 2 | · | · | · | unified ip phone (1) · unified meetingplace (1) | — | ||
| 47 | contentcustomizer | 2 | · | · | · | NEWPoC 1 | contentcustomizer (2) | — | |
| 48 | datecomm | 2 | · | · | · | NEWPoC 2 | social networking script (2) | — | |
| 49 | digium | 2 | · | · | · | NEW | asterisk (2) | — | |
| 50 | eurologon | 2 | · | · | · | NEWPoC 2 | eurologon cms (2) | — |
Sectors
Solution categories ranked by distinct CVE count this period.
- Web & CMS Plugins84 CVE7 crit60 vendorsCVSS 9.3postnuke (3) · tilde cms (3) · vigilecms (3)
- Operating Systems66 CVE25 crit20 vendorsCVSS 8.1debian gnu/linux (12) · suse linux enterprise (9) · linux kernel (6)
- Enterprise Software55 CVE21 crit17 vendorsCVSS 8.8db2 universal database (9) · aix (7) · websphere application server (3)
- Mobile Apps43 CVE22 crit2 vendorsCVSS 7.5mac os x (34) · mac os x server (19) · quicktime (5)
- Security Products34 CVE11 crit14 vendorsCVSS 7.8wireshark (11) · ethereal (4) · ssl-explorer (2)
- OSS Libraries30 CVE2 crit15 vendorsCVSS 7.5pcre (10) · php (4) · emacs (1)
- Communications27 CVE3 crit22 vendorsCVSS 7.4exophpdesk (2) · irc services (2) · eggblog (1)
- Consumer Software26 CVE13 crit16 vendorsCVSS 8.4photo editor (3) · photo manager (3) · pro photo manager (3)
- 12 crit15 vendorsCVSS 10.0ingate firewall (8) · ingate siparator (8) · ssl vpn (2)
- DevTools & CI12 CVE5 crit8 vendorsCVSS 8.2tetex (3) · phpdevshell (2) · flexnet connect (1)
- Cloud & SaaS9 CVE4 vendorsCVSS 7.5netscaler (3) · xen (2) · access essentials (1)
- Databases7 CVE3 vendorsCVSS 6.5database server (2) · e-business suite (1) · mysql (1)
- Hardware Firmware2 CVE2 vendorsCVSS 7.2siemens networker (1)
- ICS / OT / IoT1 CVE1 vendorsCVSS 8.8intouch (1)
- Unclassified67 CVE4 crit51 vendorsCVSS 6.3flatnuke3 (4) · texlive 2007 (4) · bti-tracker (3)
| Sector | CVEs | Crit | KEV | Vendors | Products | Avg CVSS | Top products |
|---|---|---|---|---|---|---|---|
| Web & CMS Plugins▸ 5 | 84 | 7 | · | 60 | 68 | 9.3 | postnuke (3) · tilde cms (3) · vigilecms (3) |
| Operating Systems▸ 4 | 66 | 25 | · | 20 | 43 | 8.1 | debian gnu/linux (12) · suse linux enterprise (9) · linux kernel (6) |
| Enterprise Software▸ 3 | 55 | 21 | · | 17 | 46 | 8.8 | db2 universal database (9) · aix (7) · websphere application server (3) |
| Mobile Apps▸ 2 | 43 | 22 | · | 2 | 5 | 7.5 | mac os x (34) · mac os x server (19) · quicktime (5) |
| Security Products▸ 3 | 34 | 11 | · | 14 | 24 | 7.8 | wireshark (11) · ethereal (4) · ssl-explorer (2) |
| OSS Libraries▸ 4 | 30 | 2 | · | 15 | 18 | 7.5 | pcre (10) · php (4) · emacs (1) |
| Communications▸ 4 | 27 | 3 | · | 22 | 23 | 7.4 | exophpdesk (2) · irc services (2) · eggblog (1) |
| Consumer Software▸ 4 | 26 | 13 | · | 16 | 22 | 8.4 | photo editor (3) · photo manager (3) · pro photo manager (3) |
| Networking Infrastructure▸ 5 | 25 | 12 | · | 15 | 20 | 10.0 | ingate firewall (8) · ingate siparator (8) · ssl vpn (2) |
| DevTools & CI▸ 3 | 12 | 5 | · | 8 | 10 | 8.2 | tetex (3) · phpdevshell (2) · flexnet connect (1) |
| Cloud & SaaS▸ 2 | 9 | · | · | 4 | 8 | 7.5 | netscaler (3) · xen (2) · access essentials (1) |
| Databases▸ 2 | 7 | · | · | 3 | 4 | 6.5 | database server (2) · e-business suite (1) · mysql (1) |
| Hardware Firmware▸ 1 | 2 | · | · | 2 | 2 | 7.2 | siemens networker (1) |
| ICS / OT / IoT▸ 1 | 1 | · | · | 1 | 1 | 8.8 | intouch (1) |
| Unclassified | 67 | 4 | · | 51 | 51 | 6.3 | flatnuke3 (4) · texlive 2007 (4) · bti-tracker (3) |
Weakness × Sector
Which weaknesses hit which solution categories in November 2007
Cells shaded by share of the sector's hottest weakness. Click a row to open the sector history.
119Memory Buffer Bounds79XSS89SQL Injection264CWE-26420Improper Input Validation22Path Traversal94Code Injection200Information Exposure287Improper Authentication399CWE-399Web & CMS Plugins22365514174Operating Systems293112422427OSS Libraries12314323361Networking Infrastructure9424331Consumer Software1661221112Enterprise Software584334111Security Products464312111Communications243621111Databases2215111DevTools & CI33211