January 2025
January 2025 closed with 4,463 published CVEs — +65.4% YoY . 358 criticals, 14 added to CISA KEV (6 ransomware-linked). сообщество свободного программного обеспечения led volume, mostly via linux. Biggest breakout: wavlink at ×12.4 their 12-month median. Top weakness class — CWE-79 (1,069 CVE). 10 vendors cracked the top-100 for the first time.
Time to exploit
How fast the community ships detection after a CVE drops.
KEV pressure, no Nuclei coverage
January 2025 · vendors with active exploitation listed by CISA but no public detection template.
- KEV 3microsoft184 CVE
- KEV 1ооо «ред софт»195 CVE
- KEV 1apple102 CVE
What's spreading where in January 2025
Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.
Most discussed CVEs — January 2025
Breakout vendors
CVE count ≥3× their own 12-period median.
- 12.4×wavlink62 CVE
- 5.7×ibm corp.88 CVE
- 4.5×fortinet52 CVE
- 4.5×fortinet inc.45 CVE
- 3.8×linksys19 CVE
- 3.3×linuxfoundation30 CVE
- 3.1×acronis14 CVE
First time in top-100
Vendors never in top-100 in the prior 24 periods.
- #25wegia37 CVE
- #29wavlink technology ltd.30 CVE
- #30open5gs29 CVE
- #32labredescefetrj26 CVE
- #39linksys19 CVE
- #48iocharger16 CVE
- #49seling16 CVE
- #56arista networks13 CVE
- #59edimax12 CVE
- #61imagination technologies12 CVE
Top vendors
Ranked by distinct CVE count this period.
- 423 CVE23 critCVSS 6.3Nuclei 1PoC 27linux (231) · debian gnu/linux (183) · open5gs (11)
- 223 CVECVSS 5.9linux (223) · linux kernel (223)
- 199 CVE8 critCVSS 6.5PoC 15astra linux special edition (198) · astra linux common edition (51) · astra linux special edition для «эльбрус» (1)
- 195 CVE5 critCVSS 6.3PoC 13осон основа оnyx (195)
- 195 CVE5 critCVSS 6.6KEV 1PoC 44ред ос (195)
- 184 CVE5 critCVSS 7.2KEV 3PoC 8windows server 2022, 23h2 edition (server core installation) (128) · windows server 2025 (server core installation) (127) · windows server 2025 (127)
- 134 CVE4 critCVSS 6.1PoC 4ubuntu (131) · apport (2) · ubuntu linux (1)
- 128 CVE4 critCVSS 6.7PoC 5red hat enterprise linux (107) · red hat enterprise linux 10 (11) · red hat enterprise linux 9 (11)
- 118 CVE3 critCVSS 5.6sterling b2b integrator (13) · concert software (6) · cloud pak system (6)
- 105 CVE4 critCVSS 7.5PoC 5android (84) · google chrome (18) · chrome (17)
- 102 CVE9 critCVSS 6.6KEV 1PoC 2macos (94) · ipados (52) · ios and ipados (50)
- 88 CVE3 critCVSS 5.8×5.7ibm sterling b2b integrator (7) · ibm concert software (6) · ibm engineering lifecycle optimization - publishing (5)
- 88 CVE4 critCVSS 5.8mysql server (30) · jd edwards enterpriseone tools (14) · oracle agile plm framework (4)
- 77 CVE4 critCVSS 6.0PoC 4opensuse leap (72) · suse linux enterprise server (56) · suse linux enterprise server for sap applications (54)
- 74 CVE12 critCVSS 6.6open social (5) · node access rebuild progressive (2) · two-factor authentication (tfa) (2)
- 73 CVE2 critCVSS 5.9PoC 6альт 8 сп (53) · альт сп 10 (30)
- 66 CVE1 critCVSS 5.8Nuclei 64PoC 66email subscribers by icegram express (5) · bulk me now! (3) · dyn business panel (3)
- 62 CVE61 critCVSS 9.2×12.4PoC 40wavlink ac3000 (62) · wl-wn533a8 firmware (62)
- 59 CVE2 critCVSS 5.5KEV 1Nuclei 4PoC 21phpoffice/phpspreadsheet (8) · phpoffice/phpexcel (8) · librenms/librenms (5)
- 52 CVE4 critCVSS 6.3×4.5KEV 1Nuclei 1fortimanager (15) · fortios (15) · fortimanager cloud (10)
- 50 CVECVSS 5.9PoC 47point of sales and inventory management system (9) · online book shop (7) · job recruitment (6)
- 49 CVE3 critCVSS 6.6Nuclei 1PoC 2github.com/mattermost/mattermost/server/v8 (7) · github.com/t2bot/matrix-media-repo (5) · github.com/kubewarden/kubewarden-controller (2)
- 45 CVE4 critCVSS 6.4×4.5KEV 1Nuclei 1fortios (16) · fortimanager (14) · fortimanager cloud (9)
- 43 CVE4 critCVSS 6.3PoC 3com.ruoyi:ruoyi (3) · org.jboss.hal:hal-console (2) · org.hl7.fhir.publisher:org.hl7.fhir.publisher.core (2)
- 37 CVE8 critCVSS 7.1NEWPoC 20wegia (37)
- 30 CVE2 critCVSS 7.1×3.3PoC 9magma (22) · yocto (8)
- 30 CVECVSS 7.5PoC 30virtuoso-opensource (30)
- 30 CVECVSS 7.5PoC 30virtuoso (30)
- 30 CVE30 critCVSS 9.2NEWPoC 8wavlink ac3000 (wl-wn533a8) (30)
- 29 CVECVSS 7.1NEWPoC 8open5gs (29)
- 28 CVECVSS 5.9harmonyos (28) · emui (12)
- 26 CVE3 critCVSS 6.4NEWPoC 9wegia (26)
- 23 CVE1 critCVSS 5.9Nuclei 1PoC 4directus (2) · @lodestar/reqresp (2) · @fastify/multipart (1)
- 23 CVE2 critCVSS 7.1Nuclei 1PoC 1snowflake-connector-python (3) · asteval (2) · vyper (1)
- 22 CVE3 critCVSS 6.8PoC 19dir-816 a2 (16) · dir-816 firmware (16) · dir-823x (1)
- 22 CVE5 critCVSS 8.0KEV 4Nuclei 4PoC 3endpoint manager (16) · ivanti endpoint manager (16) · avalanche (3)
- 20 CVECVSS 7.5PoC 9monetdb (20)
- 20 CVECVSS 8.2PoC 5x5000r firmware (15) · x5000r (15) · a6000r firmware (4)
- 19 CVE3 critCVSS 7.1NEW×3.8PoC 11e8450 firmware (10) · e7350 firmware (7) · e5600 firmware (2)
- 19 CVECVSS 7.4fastconnect 7800 firmware (13) · fastconnect 6900 firmware (13) · wsa8845h firmware (12)
- 19 CVECVSS 7.2snapdragon (19)
- 18 CVE10 critCVSS 8.5PoC 10ac18 firmware (9) · ac8 firmware (3) · ac9 firmware (2)
- 17 CVECVSS 4.1dryice myxalytics (11) · bigfix patch management download plug-ins (6)
- 16 CVECVSS 7.7substance3d - stager (5) · adobe substance 3d sampler (5) · substance 3d stager (5)
- 16 CVE2 critCVSS 6.9ambari (3) · solr (2) · ranger (2)
- 16 CVE2 critCVSS 6.8apache ambari (3) · apache hive (2) · hive (2)
- 16 CVECVSS 7.2PoC 3fedora (16)
- 16 CVE2 critCVSS 8.7NEWiocharger firmware for ac models (15) · iocharger firmware for ac chargers (1)
- 16 CVECVSS 5.1NEWvisual access manager (16)
- 16 CVECVSS 7.4sisdk (2) · emberznet (1) · ember znet sdk (1)
| # | Vendor | CVEs | Crit | KEV | Nuclei | Signals | Top products | Δ | |
|---|---|---|---|---|---|---|---|---|---|
| 1 | сообщество свободного программного обеспечения | 423 | 23 | · | 1 | Nuclei 1PoC 27 | linux (231) · debian gnu/linux (183) · open5gs (11) | — | |
| 2 | linux | 223 | · | · | · | linux (223) · linux kernel (223) | — | ||
| 3 | ооо «русбитех-астра» | 199 | 8 | · | · | PoC 15 | astra linux special edition (198) · astra linux common edition (51) · astra linux special edition для «эльбрус» (1) | — | |
| 4 | ао "нппкт" | 195 | 5 | · | · | PoC 13 | осон основа оnyx (195) | — | |
| 5 | ооо «ред софт» | 195 | 5 | 1 | · | KEV 1PoC 44 | ред ос (195) | — | |
| 6 | microsoft | 184 | 5 | 3 | · | KEV 3PoC 8 | windows server 2022, 23h2 edition (server core installation) (128) · windows server 2025 (server core installation) (127) · windows server 2025 (127) | — | |
| 7 | canonical | 134 | 4 | · | · | PoC 4 | ubuntu (131) · apport (2) · ubuntu linux (1) | — | |
| 8 | redhat | 128 | 4 | · | · | PoC 5 | red hat enterprise linux (107) · red hat enterprise linux 10 (11) · red hat enterprise linux 9 (11) | — | |
| 9 | ibm | 118 | 3 | · | · | sterling b2b integrator (13) · concert software (6) · cloud pak system (6) | — | ||
| 10 | 105 | 4 | · | · | PoC 5 | android (84) · google chrome (18) · chrome (17) | — | ||
| 11 | apple | 102 | 9 | 1 | · | KEV 1PoC 2 | macos (94) · ipados (52) · ios and ipados (50) | — | |
| 12 | ibm corp. | 88 | 3 | · | · | ×5.7 | ibm sterling b2b integrator (7) · ibm concert software (6) · ibm engineering lifecycle optimization - publishing (5) | — | |
| 13 | oracle | 88 | 4 | · | · | mysql server (30) · jd edwards enterpriseone tools (14) · oracle agile plm framework (4) | — | ||
| 14 | novell inc. | 77 | 4 | · | · | PoC 4 | opensuse leap (72) · suse linux enterprise server (56) · suse linux enterprise server for sap applications (54) | — | |
| 15 | drupal | 74 | 12 | · | · | open social (5) · node access rebuild progressive (2) · two-factor authentication (tfa) (2) | — | ||
| 16 | ао «ивк» | 73 | 2 | · | · | PoC 6 | альт 8 сп (53) · альт сп 10 (30) | — | |
| 17 | unknown | 66 | 1 | · | 64 | Nuclei 64PoC 66 | email subscribers by icegram express (5) · bulk me now! (3) · dyn business panel (3) | — | |
| 18 | wavlink | 62 | 61 | · | · | ×12.4PoC 40 | wavlink ac3000 (62) · wl-wn533a8 firmware (62) | — | |
| 19 | packagist | 59 | 2 | 1 | 4 | KEV 1Nuclei 4PoC 21 | phpoffice/phpspreadsheet (8) · phpoffice/phpexcel (8) · librenms/librenms (5) | — | |
| 20 | fortinet | 52 | 4 | 1 | 1 | ×4.5KEV 1Nuclei 1 | fortimanager (15) · fortios (15) · fortimanager cloud (10) | — | |
| 21 | code-projects | 50 | · | · | · | PoC 47 | point of sales and inventory management system (9) · online book shop (7) · job recruitment (6) | — | |
| 22 | go | 49 | 3 | · | 1 | Nuclei 1PoC 2 | github.com/mattermost/mattermost/server/v8 (7) · github.com/t2bot/matrix-media-repo (5) · github.com/kubewarden/kubewarden-controller (2) | — | |
| 23 | fortinet inc. | 45 | 4 | 1 | 1 | ×4.5KEV 1Nuclei 1 | fortios (16) · fortimanager (14) · fortimanager cloud (9) | — | |
| 24 | maven | 43 | 4 | · | · | PoC 3 | com.ruoyi:ruoyi (3) · org.jboss.hal:hal-console (2) · org.hl7.fhir.publisher:org.hl7.fhir.publisher.core (2) | — | |
| 25 | wegia | 37 | 8 | · | · | NEWPoC 20 | wegia (37) | — | |
| 26 | linuxfoundation | 30 | 2 | · | · | ×3.3PoC 9 | magma (22) · yocto (8) | — | |
| 27 | openlink software | 30 | · | · | · | PoC 30 | virtuoso-opensource (30) | — | |
| 28 | openlinksw | 30 | · | · | · | PoC 30 | virtuoso (30) | — | |
| 29 | wavlink technology ltd. | 30 | 30 | · | · | NEWPoC 8 | wavlink ac3000 (wl-wn533a8) (30) | — | |
| 30 | open5gs | 29 | · | · | · | NEWPoC 8 | open5gs (29) | — | |
| 31 | huawei | 28 | · | · | · | harmonyos (28) · emui (12) | — | ||
| 32 | labredescefetrj | 26 | 3 | · | · | NEWPoC 9 | wegia (26) | — | |
| 33 | npm | 23 | 1 | · | 1 | Nuclei 1PoC 4 | directus (2) · @lodestar/reqresp (2) · @fastify/multipart (1) | — | |
| 34 | pypi | 23 | 2 | · | 1 | Nuclei 1PoC 1 | snowflake-connector-python (3) · asteval (2) · vyper (1) | — | |
| 35 | dlink | 22 | 3 | · | · | PoC 19 | dir-816 a2 (16) · dir-816 firmware (16) · dir-823x (1) | — | |
| 36 | ivanti | 22 | 5 | 4 | 4 | KEV 4Nuclei 4PoC 3 | endpoint manager (16) · ivanti endpoint manager (16) · avalanche (3) | — | |
| 37 | monetdb | 20 | · | · | · | PoC 9 | monetdb (20) | — | |
| 38 | totolink | 20 | · | · | · | PoC 5 | x5000r firmware (15) · x5000r (15) · a6000r firmware (4) | — | |
| 39 | linksys | 19 | 3 | · | · | NEW×3.8PoC 11 | e8450 firmware (10) · e7350 firmware (7) · e5600 firmware (2) | — | |
| 40 | qualcomm | 19 | · | · | · | fastconnect 7800 firmware (13) · fastconnect 6900 firmware (13) · wsa8845h firmware (12) | — | ||
| 41 | qualcomm, inc. | 19 | · | · | · | snapdragon (19) | — | ||
| 42 | tenda | 18 | 10 | · | · | PoC 10 | ac18 firmware (9) · ac8 firmware (3) · ac9 firmware (2) | — | |
| 43 | hcl software | 17 | · | · | · | dryice myxalytics (11) · bigfix patch management download plug-ins (6) | — | ||
| 44 | adobe | 16 | · | · | · | substance3d - stager (5) · adobe substance 3d sampler (5) · substance 3d stager (5) | — | ||
| 45 | apache | 16 | 2 | · | · | ambari (3) · solr (2) · ranger (2) | — | ||
| 46 | apache software foundation | 16 | 2 | · | · | apache ambari (3) · apache hive (2) · hive (2) | — | ||
| 47 | fedora project | 16 | · | · | · | PoC 3 | fedora (16) | — | |
| 48 | iocharger | 16 | 2 | · | · | NEW | iocharger firmware for ac models (15) · iocharger firmware for ac chargers (1) | — | |
| 49 | seling | 16 | · | · | · | NEW | visual access manager (16) | — | |
| 50 | silabs.com | 16 | · | · | · | sisdk (2) · emberznet (1) · ember znet sdk (1) | — |
Sectors
Solution categories ranked by distinct CVE count this period.
- Web & CMS Plugins1,334 CVE98 crit5 KEV841 vendorsCVSS 6.5givewp (6) · arprice (5) · email subscribers \& newsletters (5)
- Operating Systems795 CVE253 crit70 KEV44 vendorsCVSS 8.2linux (459) · linux kernel (223) · astra linux special edition (198)
- Enterprise Software433 CVE60 crit4 KEV117 vendorsCVSS 7.2dryice myxalytics (22) · sterling b2b integrator (13) · cacti (12)
- OSS Libraries351 CVE29 crit1 KEV91 vendorsCVSS 7.6ffmpeg (12) · bento4 (8) · phpspreadsheet (8)
- Networking Infrastructure337 CVE236 crit15 KEV55 vendorsCVSS 8.8wavlink ac3000 (62) · wl-wn533a8 firmware (62) · wavlink ac3000 (wl-wn533a8) (30)
- Databases285 CVE15 crit23 vendorsCVSS 7.2mysql server (90) · jd edwards enterpriseone tools (42) · virtuoso (30)
- Mobile Apps252 CVE71 crit13 KEV14 vendorsCVSS 7.1android (94) · harmonyos (28) · google chrome (18)
- Security Products197 CVE60 crit13 KEV54 vendorsCVSS 7.6endpoint manager (16) · ivanti endpoint manager (16) · fortimanager (15)
- Hardware Firmware127 CVE112 crit26 vendorsCVSS 9.3graphics ddk (12) · nvidia container toolkit (6) · nvidia gpu operator (5)
- Cloud & SaaS104 CVE18 crit61 vendorsCVSS 7.4yunfan learning examination system (3) · clickwhale – link manager, link shortener and click tracker for affiliate links & link pages (2) · dojo (2)
- ICS / OT / IoT98 CVE107 crit44 vendorsCVSS 8.1factorytalk assetcentre (6) · mypro manager (4) · mypro runtime (4)
- DevTools & CI66 CVE3 crit36 vendorsCVSS 7.7gitlab (17) · git (7) · enterprise server (2)
- Consumer Software64 CVE6 crit2 KEV34 vendorsCVSS 7.4adobe substance 3d sampler (5) · substance 3d stager (5) · substance3d - stager (5)
- Communications52 CVE2 crit31 vendorsCVSS 8.8mattermost (12) · mattermost server (7) · matrix-media-repo (5)
- AI / ML50 CVE5 crit15 vendorsCVSS 8.7magma (22) · yocto (8) · keras (1)
- Unclassified429 CVE27 crit326 vendorsCVSS 6.6iocharger firmware for ac models (15) · мсвсфера (10) · dir-816 a2 (7)
| Sector | CVEs | Crit | KEV | Vendors | Products | Avg CVSS | Top products |
|---|---|---|---|---|---|---|---|
| Web & CMS Plugins▸ 6 | 1,334 | 98 | 5 | 841 | 1,177 | 6.5 | givewp (6) · arprice (5) · email subscribers \& newsletters (5) |
| Operating Systems▸ 5 | 795 | 253 | 70 | 44 | 488 | 8.2 | linux (459) · linux kernel (223) · astra linux special edition (198) |
| Enterprise Software▸ 7 | 433 | 60 | 4 | 117 | 415 | 7.2 | dryice myxalytics (22) · sterling b2b integrator (13) · cacti (12) |
| OSS Libraries▸ 10 | 351 | 29 | 1 | 91 | 319 | 7.6 | ffmpeg (12) · bento4 (8) · phpspreadsheet (8) |
| Networking Infrastructure▸ 6 | 337 | 236 | 15 | 55 | 236 | 8.8 | wavlink ac3000 (62) · wl-wn533a8 firmware (62) · wavlink ac3000 (wl-wn533a8) (30) |
| Databases▸ 5 | 285 | 15 | · | 23 | 137 | 7.2 | mysql server (90) · jd edwards enterpriseone tools (42) · virtuoso (30) |
| Mobile Apps▸ 3 | 252 | 71 | 13 | 14 | 52 | 7.1 | android (94) · harmonyos (28) · google chrome (18) |
| Security Products▸ 6 | 197 | 60 | 13 | 54 | 129 | 7.6 | endpoint manager (16) · ivanti endpoint manager (16) · fortimanager (15) |
| Hardware Firmware▸ 5 | 127 | 112 | · | 26 | 634 | 9.3 | graphics ddk (12) · nvidia container toolkit (6) · nvidia gpu operator (5) |
| Cloud & SaaS▸ 5 | 104 | 18 | · | 61 | 82 | 7.4 | yunfan learning examination system (3) · clickwhale – link manager, link shortener and click tracker for affiliate links & link pages (2) · dojo (2) |
| ICS / OT / IoT▸ 5 | 98 | 107 | · | 44 | 280 | 8.1 | factorytalk assetcentre (6) · mypro manager (4) · mypro runtime (4) |
| DevTools & CI▸ 5 | 66 | 3 | · | 36 | 55 | 7.7 | gitlab (17) · git (7) · enterprise server (2) |
| Consumer Software▸ 5 | 64 | 6 | 2 | 34 | 53 | 7.4 | adobe substance 3d sampler (5) · substance 3d stager (5) · substance3d - stager (5) |
| Communications▸ 4 | 52 | 2 | · | 31 | 49 | 8.8 | mattermost (12) · mattermost server (7) · matrix-media-repo (5) |
| AI / ML▸ 4 | 50 | 5 | · | 15 | 13 | 8.7 | magma (22) · yocto (8) · keras (1) |
| Unclassified | 429 | 27 | · | 326 | 350 | 6.6 | iocharger firmware for ac models (15) · мсвсфера (10) · dir-816 a2 (7) |
Which weaknesses hit which solution categories in January 2025
Cells shaded by share of the sector's hottest weakness. Click a row to open the sector history.