March 2025
March 2025 closed with 4,251 published CVEs — +26.0% YoY . 420 criticals, 32 added to CISA KEV (4 ransomware-linked). сообщество свободного программного обеспечения led volume, mostly via linux. Biggest breakout: ао «сбертех» at ×9.8 their 12-month median. Top weakness class — CWE-79 (854 CVE). 10 vendors cracked the top-100 for the first time.
Time to exploit
How fast the community ships detection after a CVE drops.
KEV pressure, no Nuclei coverage
March 2025 · vendors with active exploitation listed by CISA but no public detection template.
- KEV 8microsoft70 CVE
- KEV 2ооо «русбитех-астра»173 CVE
- KEV 1apple159 CVE
- KEV 1ао «сбертех»108 CVE
- KEV 1dlink20 CVE
- KEV 1ао «нтц ит роса»20 CVE
What's spreading where in March 2025
Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.
Most discussed CVEs — March 2025
Breakout vendors
CVE count ≥3× their own 12-period median.
- 9.8×ао «сбертех»108 CVE
- 6.2×phpgurukul81 CVE
- 4.0×openharmony26 CVE
- 4.0×openatom26 CVE
- 3.9×apple159 CVE
- 3.8×fortinet44 CVE
- 3.6×fortinet inc.32 CVE
- 3.2×paloaltonetworks19 CVE
- 3.0×novell inc.102 CVE
First time in top-100
Vendors never in top-100 in the prior 24 periods.
- #20printerlogic49 CVE
- #43binary-husky21 CVE
- #47open-webui20 CVE
- #51openwebui19 CVE
- #63applio14 CVE
- #64assimp14 CVE
- #66iahispano14 CVE
- #67libming14 CVE
- #70zframeworks14 CVE
- #71zj198314 CVE
Top vendors
Ranked by distinct CVE count this period.
- 312 CVE14 critCVSS 6.2KEV 2Nuclei 4PoC 26linux (200) · debian gnu/linux (140) · wpe webkit (7)
- 207 CVECVSS 5.9PoC 1linux (207) · linux kernel (207)
- 202 CVE4 critCVSS 6.2KEV 2Nuclei 5PoC 22ред ос (202)
- 173 CVE8 critCVSS 6.6KEV 2PoC 9astra linux special edition (171) · astra linux common edition (32) · пк "ald pro" (1)
- 166 CVE33 critCVSS 7.7Nuclei 4PoC 36open-webui (21) · aim (12) · h2o (10)
- 166 CVE2 critCVSS 6.4PoC 6red hat enterprise linux (130) · red hat enterprise linux 7 (17) · red hat enterprise linux 8 (17)
- 159 CVE46 critCVSS 7.0×3.9KEV 1PoC 1macos (149) · ipados (74) · ios and ipados (72)
- 123 CVE7 critCVSS 6.6KEV 3Nuclei 1PoC 7осон основа оnyx (123)
- 108 CVECVSS 6.0×9.8KEV 1PoC 1platform v sberlinux os server (108)
- 102 CVE2 critCVSS 6.1×3.0PoC 7suse linux enterprise server (89) · suse linux enterprise server for sap applications (85) · opensuse leap (51)
- 81 CVECVSS 6.7×6.2Nuclei 1PoC 78bank locker management system (12) · art gallery management system (11) · old age home management system (7)
- 80 CVE2 critCVSS 6.2PoC 3ubuntu (79) · accountsservice (1) · linux-bluefield (1)
- 76 CVE1 critCVSS 5.6Nuclei 76PoC 76gdpr cookie compliance (6) · url shortener | conversion tracking | ab testing | woocommerce (3) · product labels for woocommerce (sale badges) (2)
- 70 CVE1 critCVSS 7.2KEV 8PoC 3windows server 2025 (38) · windows server 2022, 23h2 edition (server core installation) (37) · windows server 2022 (37)
- 64 CVE8 critCVSS 6.7KEV 1Nuclei 3PoC 8ai.h2o:h2o-core (9) · io.github.robothy:local-s3-rest (4) · org.jenkins-ci.main:jenkins-core (4)
- 62 CVE5 critCVSS 6.7Nuclei 1PoC 15drupal/ai (4) · drupal/core (4) · shopxo/shopxo (3)
- 62 CVE8 critCVSS 6.8KEV 1Nuclei 1PoC 5альт сп 10 (56) · альт 8 сп (12)
- 60 CVE5 critCVSS 6.4Nuclei 4PoC 9github.com/mattermost/mattermost/server/v8 (7) · github.com/ollama/ollama (6) · k8s.io/ingress-nginx (5)
- 52 CVE7 critCVSS 6.5KEV 1Nuclei 5PoC 10directus (5) · open-webui (3) · flowise (3)
- 49 CVE36 critCVSS 9.0NEWvasion print (49) · virtual appliance (49)
- 46 CVE10 critCVSS 7.1PoC 29fh1202 firmware (8) · fh1202 (8) · rx3 firmware (7)
- 44 CVE2 critCVSS 6.6×3.8fortios (7) · fortisandbox (7) · fortiweb (6)
- 43 CVECVSS 7.0indesign desktop (9) · acrobat (9) · indesign (9)
- 39 CVE3 critCVSS 5.7infosphere information server (5) · engineering requirements management doors next (3) · common cryptographic architecture (3)
- 35 CVE2 critCVSS 7.2KEV 1Nuclei 1PoC 1google chrome (16) · chrome (15) · android (14)
- 35 CVE6 critCVSS 7.2PoC 25tenda fh1202 (6) · tenda ac9 (5) · tenda tx3 (5)
- 33 CVECVSS 5.2PoC 33blood bank management system (10) · payroll management system (7) · online class and exam scheduling system (5)
- 32 CVE2 critCVSS 7.6unity operating environment (15) · unity (15) · smartfabric os10 software (11)
- 32 CVE2 critCVSS 6.6×3.6fortisandbox (6) · fortiweb (5) · fortimail (4)
- 30 CVE2 critCVSS 7.7emc unity operating environment (16) · emc unityvsa operating environment (16) · smartfabric os10 (10)
- 30 CVE3 critCVSS 6.9drupal (4) · ai (artificial intelligence) (4) · drupal core (4)
- 30 CVECVSS 6.9notes (19) · exynos 1080 firmware (3) · exynos 1280 firmware (3)
- 27 CVECVSS 7.2fastconnect 7800 firmware (20) · wcd9380 firmware (19) · fastconnect 6900 firmware (19)
- 27 CVECVSS 7.4snapdragon (27)
- 27 CVECVSS 5.6samsung notes (19) · samsung mobile devices (6) · samsung my files (1)
- 26 CVECVSS 3.7×4.0openharmony (26)
- 26 CVECVSS 3.7×4.0openharmony (26)
- 25 CVE1 critCVSS 5.4arcgis server (24) · portal for arcgis (1)
- 25 CVE2 critCVSS 7.0tecnomatix plant simulation v2404 (10) · tecnomatix plant simulation v2302 (10) · tecnomatix plant simulation (10)
- 23 CVE3 critCVSS 6.4KEV 1Nuclei 2PoC 3traffic server (4) · vcl (2) · camel (2)
- 23 CVE3 critCVSS 6.3KEV 1Nuclei 2PoC 3apache traffic server (4) · traffic server (4) · commons vfs (virtual file system) (2)
- 22 CVE1 critCVSS 7.0PoC 9lunary (22) · lunary-ai/lunary (22)
- 21 CVECVSS 7.4NEWNuclei 1PoC 11gpt academic (21) · binary-husky/gpt_academic (20) · gpt_academic (1)
- 20 CVE4 critCVSS 5.8KEV 1PoC 14dir-618 (8) · dir-605l firmware (8) · dir-618 firmware (8)
- 20 CVE3 critCVSS 6.3Nuclei 1PoC 13gitlab (20)
- 20 CVE3 critCVSS 7.2firefox (18) · thunderbird (13) · firefox esr (10)
- 20 CVE2 critCVSS 7.4NEWPoC 5open-webui/open-webui (20)
- 20 CVECVSS 5.1sap s/4hana (manage bank statements) (2) · sap business objects business intelligence platform (1) · sap businessobjects business intelligence platform (1)
- 20 CVE3 critCVSS 7.4KEV 1PoC 2роса хром (14) · rosa virtualization 3.0 (5) · роса кобальт (3)
- 19 CVECVSS 5.5PoC 11gitlab (19)
| # | Vendor | CVEs | Crit | KEV | Nuclei | Signals | Top products | Δ | |
|---|---|---|---|---|---|---|---|---|---|
| 1 | сообщество свободного программного обеспечения | 312 | 14 | 2 | 4 | KEV 2Nuclei 4PoC 26 | linux (200) · debian gnu/linux (140) · wpe webkit (7) | — | |
| 2 | linux | 207 | · | · | · | PoC 1 | linux (207) · linux kernel (207) | — | |
| 3 | ооо «ред софт» | 202 | 4 | 2 | 5 | KEV 2Nuclei 5PoC 22 | ред ос (202) | — | |
| 4 | ооо «русбитех-астра» | 173 | 8 | 2 | · | KEV 2PoC 9 | astra linux special edition (171) · astra linux common edition (32) · пк "ald pro" (1) | — | |
| 5 | pypi | 166 | 33 | · | 4 | Nuclei 4PoC 36 | open-webui (21) · aim (12) · h2o (10) | — | |
| 6 | redhat | 166 | 2 | · | · | PoC 6 | red hat enterprise linux (130) · red hat enterprise linux 7 (17) · red hat enterprise linux 8 (17) | — | |
| 7 | apple | 159 | 46 | 1 | · | ×3.9KEV 1PoC 1 | macos (149) · ipados (74) · ios and ipados (72) | — | |
| 8 | ао "нппкт" | 123 | 7 | 3 | 1 | KEV 3Nuclei 1PoC 7 | осон основа оnyx (123) | — | |
| 9 | ао «сбертех» | 108 | · | 1 | · | ×9.8KEV 1PoC 1 | platform v sberlinux os server (108) | — | |
| 10 | novell inc. | 102 | 2 | · | · | ×3.0PoC 7 | suse linux enterprise server (89) · suse linux enterprise server for sap applications (85) · opensuse leap (51) | — | |
| 11 | phpgurukul | 81 | · | · | 1 | ×6.2Nuclei 1PoC 78 | bank locker management system (12) · art gallery management system (11) · old age home management system (7) | — | |
| 12 | canonical | 80 | 2 | · | · | PoC 3 | ubuntu (79) · accountsservice (1) · linux-bluefield (1) | — | |
| 13 | unknown | 76 | 1 | · | 76 | Nuclei 76PoC 76 | gdpr cookie compliance (6) · url shortener | conversion tracking | ab testing | woocommerce (3) · product labels for woocommerce (sale badges) (2) | — | |
| 14 | microsoft | 70 | 1 | 8 | · | KEV 8PoC 3 | windows server 2025 (38) · windows server 2022, 23h2 edition (server core installation) (37) · windows server 2022 (37) | — | |
| 15 | maven | 64 | 8 | 1 | 3 | KEV 1Nuclei 3PoC 8 | ai.h2o:h2o-core (9) · io.github.robothy:local-s3-rest (4) · org.jenkins-ci.main:jenkins-core (4) | — | |
| 16 | packagist | 62 | 5 | · | 1 | Nuclei 1PoC 15 | drupal/ai (4) · drupal/core (4) · shopxo/shopxo (3) | — | |
| 17 | ао «ивк» | 62 | 8 | 1 | 1 | KEV 1Nuclei 1PoC 5 | альт сп 10 (56) · альт 8 сп (12) | — | |
| 18 | go | 60 | 5 | · | 4 | Nuclei 4PoC 9 | github.com/mattermost/mattermost/server/v8 (7) · github.com/ollama/ollama (6) · k8s.io/ingress-nginx (5) | — | |
| 19 | npm | 52 | 7 | 1 | 5 | KEV 1Nuclei 5PoC 10 | directus (5) · open-webui (3) · flowise (3) | — | |
| 20 | printerlogic | 49 | 36 | · | · | NEW | vasion print (49) · virtual appliance (49) | — | |
| 21 | tenda | 46 | 10 | · | · | PoC 29 | fh1202 firmware (8) · fh1202 (8) · rx3 firmware (7) | — | |
| 22 | fortinet | 44 | 2 | · | · | ×3.8 | fortios (7) · fortisandbox (7) · fortiweb (6) | — | |
| 23 | adobe | 43 | · | · | · | indesign desktop (9) · acrobat (9) · indesign (9) | — | ||
| 24 | ibm | 39 | 3 | · | · | infosphere information server (5) · engineering requirements management doors next (3) · common cryptographic architecture (3) | — | ||
| 25 | 35 | 2 | 1 | 1 | KEV 1Nuclei 1PoC 1 | google chrome (16) · chrome (15) · android (14) | — | ||
| 26 | shenzhen tenda technology co., ltd. | 35 | 6 | · | · | PoC 25 | tenda fh1202 (6) · tenda ac9 (5) · tenda tx3 (5) | — | |
| 27 | code-projects | 33 | · | · | · | PoC 33 | blood bank management system (10) · payroll management system (7) · online class and exam scheduling system (5) | — | |
| 28 | dell | 32 | 2 | · | · | unity operating environment (15) · unity (15) · smartfabric os10 software (11) | — | ||
| 29 | fortinet inc. | 32 | 2 | · | · | ×3.6 | fortisandbox (6) · fortiweb (5) · fortimail (4) | — | |
| 30 | dell technologies | 30 | 2 | · | · | emc unity operating environment (16) · emc unityvsa operating environment (16) · smartfabric os10 (10) | — | ||
| 31 | drupal | 30 | 3 | · | · | drupal (4) · ai (artificial intelligence) (4) · drupal core (4) | — | ||
| 32 | samsung | 30 | · | · | · | notes (19) · exynos 1080 firmware (3) · exynos 1280 firmware (3) | — | ||
| 33 | qualcomm | 27 | · | · | · | fastconnect 7800 firmware (20) · wcd9380 firmware (19) · fastconnect 6900 firmware (19) | — | ||
| 34 | qualcomm, inc. | 27 | · | · | · | snapdragon (27) | — | ||
| 35 | samsung mobile | 27 | · | · | · | samsung notes (19) · samsung mobile devices (6) · samsung my files (1) | — | ||
| 36 | openatom | 26 | · | · | · | ×4.0 | openharmony (26) | — | |
| 37 | openharmony | 26 | · | · | · | ×4.0 | openharmony (26) | — | |
| 38 | esri | 25 | 1 | · | · | arcgis server (24) · portal for arcgis (1) | — | ||
| 39 | siemens | 25 | 2 | · | · | tecnomatix plant simulation v2404 (10) · tecnomatix plant simulation v2302 (10) · tecnomatix plant simulation (10) | — | ||
| 40 | apache | 23 | 3 | 1 | 2 | KEV 1Nuclei 2PoC 3 | traffic server (4) · vcl (2) · camel (2) | — | |
| 41 | apache software foundation | 23 | 3 | 1 | 2 | KEV 1Nuclei 2PoC 3 | apache traffic server (4) · traffic server (4) · commons vfs (virtual file system) (2) | — | |
| 42 | lunary-ai | 22 | 1 | · | · | PoC 9 | lunary (22) · lunary-ai/lunary (22) | — | |
| 43 | binary-husky | 21 | · | · | 1 | NEWNuclei 1PoC 11 | gpt academic (21) · binary-husky/gpt_academic (20) · gpt_academic (1) | — | |
| 44 | dlink | 20 | 4 | 1 | · | KEV 1PoC 14 | dir-618 (8) · dir-605l firmware (8) · dir-618 firmware (8) | — | |
| 45 | gitlab inc. | 20 | 3 | · | 1 | Nuclei 1PoC 13 | gitlab (20) | — | |
| 46 | mozilla | 20 | 3 | · | · | firefox (18) · thunderbird (13) · firefox esr (10) | — | ||
| 47 | open-webui | 20 | 2 | · | · | NEWPoC 5 | open-webui/open-webui (20) | — | |
| 48 | sap_se | 20 | · | · | · | sap s/4hana (manage bank statements) (2) · sap business objects business intelligence platform (1) · sap businessobjects business intelligence platform (1) | — | ||
| 49 | ао «нтц ит роса» | 20 | 3 | 1 | · | KEV 1PoC 2 | роса хром (14) · rosa virtualization 3.0 (5) · роса кобальт (3) | — | |
| 50 | gitlab | 19 | · | · | · | PoC 11 | gitlab (19) | — |
Sectors
Solution categories ranked by distinct CVE count this period.
- Web & CMS Plugins1,033 CVE83 crit6 KEV661 vendorsCVSS 7.9gdpr cookie compliance (7) · advanced iframe (6) · school management system (5)
- Operating Systems623 CVE74 crit396 KEV42 vendorsCVSS 7.2linux (408) · linux kernel (207) · ред ос (202)
- OSS Libraries623 CVE89 crit5 KEV118 vendorsCVSS 7.7open-webui (21) · aim (12) · h2o (10)
- Enterprise Software609 CVE162 crit11 KEV156 vendorsCVSS 7.9vasion print (49) · virtual appliance (49) · bank locker management system (12)
- AI / ML315 CVE80 crit74 vendorsCVSS 7.7open-webui/open-webui (20) · open webui (19) · dify (11)
- Networking Infrastructure256 CVE74 crit8 KEV56 vendorsCVSS 7.2cisco ios xr (10) · cisco ios xr software (10) · ios xr (10)
- Mobile Apps237 CVE160 crit14 KEV10 vendorsCVSS 7.5macos (205) · ipados (112) · ios and ipados (72)
- Hardware Firmware160 CVE41 crit3 KEV40 vendorsCVSS 9.2qts (18) · quts hero (18) · emc unity operating environment (16)
- Security Products152 CVE23 crit1 KEV66 vendorsCVSS 7.2fortios (7) · fortisandbox (7) · fortiweb (6)
- Consumer Software141 CVE17 crit40 vendorsCVSS 9.8cobalt (36) · autocad (22) · autocad architecture (22)
- ICS / OT / IoT113 CVE50 crit43 vendorsCVSS 8.1aprol (9) · b&r aprol (5) · enervista ur setup (3)
- DevTools & CI80 CVE10 crit11 KEV33 vendorsCVSS 6.9jenkins (12) · tuleap (11) · schedule (2)
- Cloud & SaaS78 CVE18 crit32 KEV49 vendorsCVSS 8.2appsmith (5) · tripleplay (4) · file away (2)
- Communications60 CVE5 crit2 KEV36 vendorsCVSS 7.9danny-avila/librechat (11) · librechat (11) · mattermost (11)
- Databases54 CVE3 crit1 KEV20 vendorsCVSS 8.5mariadb (8) · ibm 4769 developers toolkit (3) · ibm common cryptographic architecture (3)
- Unclassified383 CVE42 crit1 KEV270 vendorsCVSS 6.6мсвсфера (9) · dir-605l (8) · dir-618 (8)
| Sector | CVEs | Crit | KEV | Vendors | Products | Avg CVSS | Top products |
|---|---|---|---|---|---|---|---|
| Web & CMS Plugins▸ 6 | 1,033 | 83 | 6 | 661 | 875 | 7.9 | gdpr cookie compliance (7) · advanced iframe (6) · school management system (5) |
| Operating Systems▸ 5 | 623 | 74 | 396 | 42 | 339 | 7.2 | linux (408) · linux kernel (207) · ред ос (202) |
| OSS Libraries▸ 10 | 623 | 89 | 5 | 118 | 414 | 7.7 | open-webui (21) · aim (12) · h2o (10) |
| Enterprise Software▸ 7 | 609 | 162 | 11 | 156 | 497 | 7.9 | vasion print (49) · virtual appliance (49) · bank locker management system (12) |
| AI / ML▸ 5 | 315 | 80 | · | 74 | 97 | 7.7 | open-webui/open-webui (20) · open webui (19) · dify (11) |
| Networking Infrastructure▸ 5 | 256 | 74 | 8 | 56 | 259 | 7.2 | cisco ios xr (10) · cisco ios xr software (10) · ios xr (10) |
| Mobile Apps▸ 3 | 237 | 160 | 14 | 10 | 51 | 7.5 | macos (205) · ipados (112) · ios and ipados (72) |
| Hardware Firmware▸ 5 | 160 | 41 | 3 | 40 | 721 | 9.2 | qts (18) · quts hero (18) · emc unity operating environment (16) |
| Security Products▸ 6 | 152 | 23 | 1 | 66 | 117 | 7.2 | fortios (7) · fortisandbox (7) · fortiweb (6) |
| Consumer Software▸ 5 | 141 | 17 | · | 40 | 92 | 9.8 | cobalt (36) · autocad (22) · autocad architecture (22) |
| ICS / OT / IoT▸ 6 | 113 | 50 | · | 43 | 149 | 8.1 | aprol (9) · b&r aprol (5) · enervista ur setup (3) |
| DevTools & CI▸ 4 | 80 | 10 | 11 | 33 | 44 | 6.9 | jenkins (12) · tuleap (11) · schedule (2) |
| Cloud & SaaS▸ 5 | 78 | 18 | 32 | 49 | 72 | 8.2 | appsmith (5) · tripleplay (4) · file away (2) |
| Communications▸ 4 | 60 | 5 | 2 | 36 | 69 | 7.9 | danny-avila/librechat (11) · librechat (11) · mattermost (11) |
| Databases▸ 5 | 54 | 3 | 1 | 20 | 32 | 8.5 | mariadb (8) · ibm 4769 developers toolkit (3) · ibm common cryptographic architecture (3) |
| Unclassified | 383 | 42 | 1 | 270 | 295 | 6.6 | мсвсфера (9) · dir-605l (8) · dir-618 (8) |
Which weaknesses hit which solution categories in March 2025
Cells shaded by share of the sector's hottest weakness. Click a row to open the sector history.