month report
March 2008
Data as of Jun 11, 2026, 06:04 UTCSnapshot v1 Sources CVEList V5+NVD+GHSA+CSAF+FSTEC BDU+CISA KEV+EPSS+Nuclei templates Methodology →
March 2008 closed with 522 published CVEs — -18.4% YoY . 82 criticals, apple led volume, mostly via mac os x. Biggest breakout: zyxel at ×4.3 their 12-month median. Top weakness class — CWE-79 (97 CVE). 10 vendors cracked the top-100 for the first time.
Total CVEs
522
— MoM-18.4% YoY
Severity mix
82 / 125
critical / high
KEV added
0
0 ransomware-linked
Nuclei coverage
0.2%
1 CVEs with templates
Time to exploit
How fast the community ships detection after a CVE drops.
Days → Nuclei (median)
6568.2
n=1
Within 7 days
0.0%
Within 30 days
0.0%
Days → KEV (median)
—
n=0
Weakness × Vendor
What's spreading where in March 2008
Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.
79XSS89SQL Injection119Memory Buffer Bounds264CWE-26494Code Injection20Improper Input Validation200Information Exposure22Path Traversal287Improper Authentication189CWE-189apple99413813sun2361ibm1272121microsoft1123zyxel1212cisco11111сообщество свободного программного обеспечения1113linksys2212mozilla121pypi22adobe211vmware3
Most discussed CVEs — March 2008
No CVE mentions in the news this month yet.
Breakout vendors
CVE count ≥3× their own 12-period median.
First time in top-100
Vendors never in top-100 in the prior 24 periods.
- #17plone5 CVE
- #18acronis4 CVE
- #20deslock4 CVE
- #23gallarific4 CVE
- #24manageengine4 CVE
- #27myiosoft4 CVE
- #29peel4 CVE
- #30snom4 CVE
- #31airspan3 CVE
- #33belkin3 CVE
Top vendors
Ranked by distinct CVE count this period.
- 43 CVE2 critCVSS 5.6mac os x (28) · mac os x server (27) · safari (11)
- 22 CVE7 critCVSS 6.9PoC 1jdk (12) · jre (12) · sdk (8)
- 21 CVE3 critCVSS 6.4aix (10) · websphere mq (3) · rational clearquest (3)
- 20 CVE14 critCVSS 8.8office (9) · excel (6) · excel viewer (6)
- 17 CVE4 critCVSS 6.7×4.3PoC 2zynos (8) · prestige 661 (8) · prestige 660 (8)
- 10 CVE2 critCVSS 7.2PoC 1ios (5) · cisco ios (3) · user changeable password (2)
- 10 CVE1 critCVSS 6.4PoC 4debian gnu/linux (10) · xine-lib (1)
- 9 CVE2 critCVSS 6.6×3.6PoC 6wrt54g (5) · wag54gs (3) · wrt300n (1)
- 9 CVE1 critCVSS 6.1PoC 1seamonkey (8) · firefox (8) · thunderbird (5)
- 8 CVE1 critCVSS 5.8×4.0PoC 1plone (4) · moin (2) · roundup (2)
- 7 CVE1 critCVSS 6.3coldfusion (3) · livecycle workflow (1) · acrobat reader (1)
- 6 CVE2 critCVSS 6.7PoC 1red hat enterprise linux (3) · directory server (2) · enterprise linux (1)
- 6 CVE1 critCVSS 7.5ace (6) · player (6) · server (5)
- 5 CVE3 critCVSS 8.5ubuntu linux (4) · ubuntu (1)
- 5 CVE2 critCVSS 7.3debian linux (5)
- 5 CVECVSS 7.4PoC 4com acajoom (1) · com ewriting (1) · com garyscookbook (1)
- 5 CVE1 critCVSS 6.7NEWplone cms (5)
- 4 CVECVSS 4.9NEWPoC 2true image (2) · snap deploy (2) · true image windows agent (1)
- 4 CVE1 critCVSS 8.4open source (3) · s800i (3) · asterisk appliance developer kit (3)
- 4 CVECVSS 6.0NEWPoC 4deslock (4)
- 4 CVECVSS 7.1PoC 4exv2 (4) · bamagalerie (1)
- 4 CVE1 critCVSS 7.0PoC 1fedora (4)
- 4 CVECVSS 6.4NEWPoC 2gallarific (4)
- 4 CVECVSS 4.8NEW×4.0applications manager (1) · eventlog analyzer (1) · servicedesk plus (1)
- 4 CVECVSS 4.2PoC 1org.opencms:opencms-core (3) · com.sun.faces:jsf-api (1)
- 4 CVE3 critCVSS 9.2kerberos 5 (4)
- 4 CVECVSS 5.9NEWPoC 4easycalendar (4)
- 4 CVE1 critCVSS 7.0edirectory (2) · groupwise (2)
- 4 CVECVSS 6.6NEWPoC 4peel (4)
- 4 CVE2 critCVSS 7.2NEW320 sip phone (4)
- 3 CVE1 critCVSS 8.3NEWbase station distribution unit (1) · prost web management (1) · wimax prost (1)
- 3 CVECVSS 4.2PoC 1opencms (3)
- 3 CVE2 critCVSS 9.3NEW×3.0PoC 1f5d7230-4 (3)
- 3 CVECVSS 5.4PoC 3bolinos (3)
- 3 CVECVSS 4.5×3.0PoC 1centreon (3)
- 3 CVECVSS 6.8NEWdirectory pro (3)
- 3 CVECVSS 6.8NEWdarwin (3)
- 3 CVECVSS 4.0drupal (2) · ubercart module (1)
- 3 CVE1 critCVSS 6.0gentoo linux (3)
- 3 CVE1 critCVSS 7.9storageworks library and tape tools (1) · g7000 (1) · hpqflash for hp notebook system bios (1)
- 3 CVE2 critCVSS 7.6PoC 3jspwiki (3)
- 3 CVECVSS 4.8PoC 1lighttpd (3)
- 3 CVE2 critCVSS 8.5PoC 3mailenable enterprise (3) · mailenable professional (3) · mailenable standard (1)
- 3 CVECVSS 7.5PoC 3com ewriting (1) · com garyscookbook (1) · datsogallery (1)
- 3 CVECVSS 5.5NEWPoC 3net inspector (3)
- 3 CVE1 critCVSS 7.7PoC 2netbsd (3) · netbsd current (1)
- 3 CVE1 critCVSS 7.5NEWPoC 2timbuktu pro (3)
- 3 CVE1 critCVSS 6.7NEWpt360 tool suite (2) · pt360 tool suite pro (1)
- 3 CVECVSS 5.9NEW×3.0perforce server (3)
- 3 CVECVSS 7.3PoC 1123 flash chat module (1) · module xs (1) · pjirc module (1)
| # | Vendor | CVEs | Crit | KEV | Nuclei | Signals | Top products | Δ | |
|---|---|---|---|---|---|---|---|---|---|
| 1 | apple | 43 | 2 | · | · | mac os x (28) · mac os x server (27) · safari (11) | — | ||
| 2 | sun | 22 | 7 | · | · | PoC 1 | jdk (12) · jre (12) · sdk (8) | — | |
| 3 | ibm | 21 | 3 | · | · | aix (10) · websphere mq (3) · rational clearquest (3) | — | ||
| 4 | microsoft | 20 | 14 | · | · | office (9) · excel (6) · excel viewer (6) | — | ||
| 5 | zyxel | 17 | 4 | · | · | ×4.3PoC 2 | zynos (8) · prestige 661 (8) · prestige 660 (8) | — | |
| 6 | cisco | 10 | 2 | · | · | PoC 1 | ios (5) · cisco ios (3) · user changeable password (2) | — | |
| 7 | сообщество свободного программного обеспечения | 10 | 1 | · | · | PoC 4 | debian gnu/linux (10) · xine-lib (1) | — | |
| 8 | linksys | 9 | 2 | · | · | ×3.6PoC 6 | wrt54g (5) · wag54gs (3) · wrt300n (1) | — | |
| 9 | mozilla | 9 | 1 | · | · | PoC 1 | seamonkey (8) · firefox (8) · thunderbird (5) | — | |
| 10 | pypi | 8 | 1 | · | · | ×4.0PoC 1 | plone (4) · moin (2) · roundup (2) | — | |
| 11 | adobe | 7 | 1 | · | · | coldfusion (3) · livecycle workflow (1) · acrobat reader (1) | — | ||
| 12 | redhat | 6 | 2 | · | · | PoC 1 | red hat enterprise linux (3) · directory server (2) · enterprise linux (1) | — | |
| 13 | vmware | 6 | 1 | · | · | ace (6) · player (6) · server (5) | — | ||
| 14 | canonical | 5 | 3 | · | · | ubuntu linux (4) · ubuntu (1) | — | ||
| 15 | debian | 5 | 2 | · | · | debian linux (5) | — | ||
| 16 | joomla | 5 | · | · | · | PoC 4 | com acajoom (1) · com ewriting (1) · com garyscookbook (1) | — | |
| 17 | plone | 5 | 1 | · | · | NEW | plone cms (5) | — | |
| 18 | acronis | 4 | · | · | · | NEWPoC 2 | true image (2) · snap deploy (2) · true image windows agent (1) | — | |
| 19 | asterisk | 4 | 1 | · | · | open source (3) · s800i (3) · asterisk appliance developer kit (3) | — | ||
| 20 | deslock | 4 | · | · | · | NEWPoC 4 | deslock (4) | — | |
| 21 | exv2 | 4 | · | · | · | PoC 4 | exv2 (4) · bamagalerie (1) | — | |
| 22 | fedoraproject | 4 | 1 | · | · | PoC 1 | fedora (4) | — | |
| 23 | gallarific | 4 | · | · | · | NEWPoC 2 | gallarific (4) | — | |
| 24 | manageengine | 4 | · | · | · | NEW×4.0 | applications manager (1) · eventlog analyzer (1) · servicedesk plus (1) | — | |
| 25 | maven | 4 | · | · | · | PoC 1 | org.opencms:opencms-core (3) · com.sun.faces:jsf-api (1) | — | |
| 26 | mit | 4 | 3 | · | · | kerberos 5 (4) | — | ||
| 27 | myiosoft | 4 | · | · | · | NEWPoC 4 | easycalendar (4) | — | |
| 28 | novell | 4 | 1 | · | · | edirectory (2) · groupwise (2) | — | ||
| 29 | peel | 4 | · | · | · | NEWPoC 4 | peel (4) | — | |
| 30 | snom | 4 | 2 | · | · | NEW | 320 sip phone (4) | — | |
| 31 | airspan | 3 | 1 | · | · | NEW | base station distribution unit (1) · prost web management (1) · wimax prost (1) | — | |
| 32 | alkacon | 3 | · | · | · | PoC 1 | opencms (3) | — | |
| 33 | belkin | 3 | 2 | · | · | NEW×3.0PoC 1 | f5d7230-4 (3) | — | |
| 34 | bolinos | 3 | · | · | · | PoC 3 | bolinos (3) | — | |
| 35 | centreon | 3 | · | · | · | ×3.0PoC 1 | centreon (3) | — | |
| 36 | cosmicperl | 3 | · | · | · | NEW | directory pro (3) | — | |
| 37 | darwin | 3 | · | · | · | NEW | darwin (3) | — | |
| 38 | drupal | 3 | · | · | · | drupal (2) · ubercart module (1) | — | ||
| 39 | gentoo foundation inc. | 3 | 1 | · | · | gentoo linux (3) | — | ||
| 40 | hp | 3 | 1 | · | · | storageworks library and tape tools (1) · g7000 (1) · hpqflash for hp notebook system bios (1) | — | ||
| 41 | jspwiki | 3 | 2 | · | · | PoC 3 | jspwiki (3) | — | |
| 42 | lighttpd | 3 | · | · | · | PoC 1 | lighttpd (3) | — | |
| 43 | mailenable | 3 | 2 | · | · | PoC 3 | mailenable enterprise (3) · mailenable professional (3) · mailenable standard (1) | — | |
| 44 | mambo | 3 | · | · | · | PoC 3 | com ewriting (1) · com garyscookbook (1) · datsogallery (1) | — | |
| 45 | mg-soft | 3 | · | · | · | NEWPoC 3 | net inspector (3) | — | |
| 46 | netbsd | 3 | 1 | · | · | PoC 2 | netbsd (3) · netbsd current (1) | — | |
| 47 | netopia | 3 | 1 | · | · | NEWPoC 2 | timbuktu pro (3) | — | |
| 48 | packettrap | 3 | 1 | · | · | NEW | pt360 tool suite (2) · pt360 tool suite pro (1) | — | |
| 49 | perforce | 3 | · | · | · | NEW×3.0 | perforce server (3) | — | |
| 50 | phpbb | 3 | · | · | · | PoC 1 | 123 flash chat module (1) · module xs (1) · pjirc module (1) | — |
Sectors
Solution categories ranked by distinct CVE count this period.
- Web & CMS Plugins119 CVE3 crit79 vendorsCVSS 6.3plone cms (5) · exv2 (4) · directory pro (3)
- Operating Systems83 CVE68 crit25 vendorsCVSS 9.0jdk (12) · jre (12) · sdk (8)
- Enterprise Software62 CVE13 crit26 vendorsCVSS 7.7aix (10) · centreon (3) · rational clearquest (3)
- 17 crit17 vendorsCVSS 7.3ios (5) · wrt54g (5) · cisco ios (3)
- Mobile Apps45 CVE2 crit2 vendorsCVSS 7.2mac os x (28) · mac os x server (27) · safari (11)
- Security Products37 CVE3 crit19 vendorsCVSS 9.3deslock (4) · net inspector (3) · wireshark (3)
- Communications27 CVE14 crit15 vendorsCVSS 8.2mailenable enterprise (3) · mailenable professional (3) · dovecot (2)
- Consumer Software26 CVE9 crit12 vendorsCVSS 9.3coldfusion (3) · acrobat reader (1) · antivirus online update module (1)
- OSS Libraries26 CVE5 crit13 vendorsCVSS 7.6graphicsmagick (2) · imagemagick (2) · alternative php cache (1)
- Cloud & SaaS7 CVE3 crit2 vendorsCVSS 7.5ace (6) · player (6) · server (5)
- DevTools & CI6 CVE2 vendorsCVSS 5.1perforce server (3) · viewvc (3)
- Databases2 CVE1 vendorsCVSS 5.3phpmyadmin (2)
- Hardware Firmware2 CVE1 crit2 vendorsCVSS 10.0remote console (1)
- ICS / OT / IoT2 CVE1 crit2 vendorsCVSS 9.8tn-4900 (1)
- Unclassified47 CVE4 crit39 vendorsCVSS 6.4bolinos (3) · interneserviceslosungen (2) · mapbender (2)
| Sector | CVEs | Crit | KEV | Vendors | Products | Avg CVSS | Top products |
|---|---|---|---|---|---|---|---|
| Web & CMS Plugins▸ 5 | 119 | 3 | · | 79 | 92 | 6.3 | plone cms (5) · exv2 (4) · directory pro (3) |
| Operating Systems▸ 3 | 83 | 68 | · | 25 | 70 | 9.0 | jdk (12) · jre (12) · sdk (8) |
| Enterprise Software▸ 6 | 62 | 13 | · | 26 | 44 | 7.7 | aix (10) · centreon (3) · rational clearquest (3) |
| Networking Infrastructure▸ 5 | 59 | 17 | · | 17 | 59 | 7.3 | ios (5) · wrt54g (5) · cisco ios (3) |
| Mobile Apps▸ 2 | 45 | 2 | · | 2 | 9 | 7.2 | mac os x (28) · mac os x server (27) · safari (11) |
| Security Products▸ 5 | 37 | 3 | · | 19 | 45 | 9.3 | deslock (4) · net inspector (3) · wireshark (3) |
| Communications▸ 4 | 27 | 14 | · | 15 | 28 | 8.2 | mailenable enterprise (3) · mailenable professional (3) · dovecot (2) |
| Consumer Software▸ 5 | 26 | 9 | · | 12 | 20 | 9.3 | coldfusion (3) · acrobat reader (1) · antivirus online update module (1) |
| OSS Libraries▸ 5 | 26 | 5 | · | 13 | 17 | 7.6 | graphicsmagick (2) · imagemagick (2) · alternative php cache (1) |
| Cloud & SaaS▸ 1 | 7 | 3 | · | 2 | 7 | 7.5 | ace (6) · player (6) · server (5) |
| DevTools & CI▸ 1 | 6 | · | · | 2 | 2 | 5.1 | perforce server (3) · viewvc (3) |
| Databases▸ 1 | 2 | · | · | 1 | 1 | 5.3 | phpmyadmin (2) |
| Hardware Firmware▸ 1 | 2 | 1 | · | 2 | 9 | 10.0 | remote console (1) |
| ICS / OT / IoT▸ 2 | 2 | 1 | · | 2 | 2 | 9.8 | tn-4900 (1) |
| Unclassified | 47 | 4 | · | 39 | 42 | 6.4 | bolinos (3) · interneserviceslosungen (2) · mapbender (2) |
Weakness × Sector
Which weaknesses hit which solution categories in March 2008
Cells shaded by share of the sector's hottest weakness. Click a row to open the sector history.
79XSS89SQL Injection119Memory Buffer Bounds264CWE-26494Code Injection20Improper Input Validation200Information Exposure22Path Traversal287Improper Authentication189CWE-189Web & CMS Plugins424613925113Operating Systems21417339336Networking Infrastructure134617716Consumer Software13171351124OSS Libraries81111051162Enterprise Software1952342333Communications316123111Security Products434641Databases1111DevTools & CI11132