month report
May 2025
Data as of Jun 11, 2026, 06:05 UTCSnapshot v1 Sources CVEList V5+NVD+GHSA+CSAF+FSTEC BDU+CISA KEV+EPSS+Nuclei templates Methodology →
May 2025 closed with 4,361 published CVEs — -19.5% YoY . 376 criticals, 24 added to CISA KEV. linux led volume, mostly via linux kernel. Biggest breakout: phpgurukul at ×14.4 their 12-month median. Top weakness class — CWE-79 (607 CVE). 10 vendors cracked the top-100 for the first time.
Total CVEs
4,361
— MoM-19.5% YoY
Severity mix
376 / 1,372
critical / high
KEV added
24
0 ransomware-linked
Nuclei coverage
21.9%
953 CVEs with templates
Time to exploit
How fast the community ships detection after a CVE drops.
Days → Nuclei (median)
295.0
n=953
Within 7 days
0.0%
Within 30 days
0.0%
Days → KEV (median)
6
n=19
Weakness × Vendor
What's spreading where in May 2025
Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.
79XSS89SQL Injection74Injection119Memory Buffer Bounds787Out-of-bounds Write476NULL Pointer Dereference352CSRF862Missing Authorization120Buffer Overflow284CWE-284сообщество свободного программного обеспечения922217954232linux181183ооо «русбитех-астра»161860241ооо «ред софт»213115323red hat inc.1364441canonical ltd.37422ао «нппкт»31743232ао «сбертех»29503debian832phpgurukul51151111microsoft corp1122microsoft1023
Most discussed CVEs — May 2025
No CVE mentions in the news this month yet.
Breakout vendors
CVE count ≥3× their own 12-period median.
- 14.4×phpgurukul122 CVE
- 11.2×debian145 CVE
- 9.6×ао «сбертех»153 CVE
- 5.2×abb31 CVE
- 3.3×code-projects23 CVE
Top vendors
Ranked by distinct CVE count this period.
- 550 CVECVSS 6.0PoC 4linux kernel (550) · linux (549)
- 502 CVE9 critCVSS 6.2Nuclei 2PoC 36linux (397) · debian gnu/linux (226) · freescout (24)
- 288 CVE4 critCVSS 6.1Nuclei 1PoC 18ред ос (288)
- 288 CVE4 critCVSS 6.2Nuclei 1PoC 17astra linux special edition (287) · astra linux common edition (46) · пк "ald pro" (1)
- 240 CVE4 critCVSS 6.3PoC 13осон основа оnyx (240)
- 226 CVE5 critCVSS 5.4Nuclei 225PoC 226illi link party! (4) · ekc tournament manager (3) · wp maps (3)
- 218 CVE2 critCVSS 6.2Nuclei 1PoC 12red hat enterprise linux (204) · red hat enterprise linux 8 (18) · red hat enterprise linux 9 (17)
- 217 CVECVSS 6.1PoC 9ubuntu (217) · ubuntu linux (1) · apport (1)
- 153 CVECVSS 6.1×9.6PoC 7platform v sberlinux os server (152) · субд «platform v pangolin db» (2)
- 145 CVECVSS 6.1×11.2PoC 4debian linux (144) · trixie (1)
- 122 CVE3 critCVSS 7.0×14.4PoC 117park ticketing management system (7) · company visitor management system (6) · news portal project (6)
- 85 CVE5 critCVSS 7.2KEV 5PoC 4windows server 2025 (server core installation) (40) · windows server 2022 23h2 (40) · windows server 2022, 23h2 edition (server core installation) (40)
- 79 CVE5 critCVSS 6.5macos (67) · ipados (46) · ios and ipados (43)
- 68 CVE12 critCVSS 8.0PoC 39a3002r firmware (27) · a3002r (27) · a3002ru (17)
- 61 CVECVSS 7.2PoC 60sales and inventory system (24) · online hospital management system (12) · online shopping portal (11)
- 52 CVE1 critCVSS 6.3PoC 4альт сп 10 (28) · альт 8 сп (28)
- 50 CVE2 critCVSS 7.2PoC 18di-7003g firmware (11) · di-7003gv2 (11) · dir-600l firmware (9)
- 50 CVE11 critCVSS 7.1Nuclei 2PoC 6github.com/mattermost/mattermost/server/v8 (9) · github.com/zitadel/zitadel (2) · github.com/gardener/gardener (2)
- 49 CVECVSS 6.5intel iris xe graphics (15) · intel arc graphics (15) · intel data center gpu flex 170 (14)
- 48 CVE1 critCVSS 6.2Nuclei 1PoC 48cisco ios xe software (20) · ios xe (20) · cisco ios xe (11)
- 47 CVE5 critCVSS 6.5Nuclei 1PoC 11vllm (9) · langroid (3) · vyper (2)
- 45 CVE1 critCVSS 6.1db2 (8) · db2 for linux, unix and windows (8) · concert software (4)
- 45 CVECVSS 6.3PoC 45stock management system (8) · online student clearance system (7) · client database management system (6)
- 43 CVECVSS 7.1PoC 15di-7003gv2 (11) · dir-600l (9) · dir-619l (7)
- 42 CVE5 critCVSS 6.4KEV 1Nuclei 1PoC 10mautic/core (5) · typo3/cms-core (4) · nitsan/ns-backup (3)
- 40 CVE7 critCVSS 7.6coldfusion (8) · substance3d - stager (6) · adobe animate 2023 (6)
- 39 CVE7 critCVSS 7.9PoC 18rx2 pro firmware (11) · fh451 firmware (4) · w20e firmware (4)
- 38 CVE5 critCVSS 7.5scalance lpe9403 (12) · scalance lpe9403 firmware (12) · simatic pcs neo v4.1 (4)
- 36 CVECVSS 7.2PoC 36gym management system (15) · restaurant management system (9) · placement management system (6)
- 35 CVE7 critCVSS 7.2Nuclei 1PoC 3org.apache.inlong:manager-pojo (3) · org.jenkins-ci.plugins:vmanager-plugin (2) · org.graylog2:graylog2-server (2)
- 35 CVECVSS 6.5PoC 5suse linux enterprise server (31) · suse linux enterprise server for sap applications (29) · opensuse leap (28)
- 35 CVECVSS 7.7fastconnect 7800 firmware (30) · wsa8830 firmware (28) · wsa8835 firmware (28)
- 35 CVECVSS 7.5snapdragon (35)
- 35 CVE2 critCVSS 6.9KEV 1Nuclei 1PoC 1android (12) · exynos 1480 firmware (9) · exynos 1330 firmware (8)
- 33 CVECVSS 7.3NEWPoC 33ftp server (33) · freefloat ftp server (21)
- 32 CVE1 critCVSS 6.3Nuclei 2PoC 4@cloudflare/workers-oauth-provider (4) · passport-wsfed-saml2 (2) · mcp-markdownify-server (2)
- 31 CVE4 critCVSS 7.1NEW×5.2matrix series (31) · aspect-enterprise (31) · nexus series (31)
- 30 CVECVSS 5.6samsung mobile devices (13) · samsung gallery (4) · samsung notes (2)
- 29 CVE1 critCVSS 7.0PoC 2chrome (14) · google chrome (14) · android (9)
- 25 CVE1 critCVSS 4.4PoC 4sudo-rs (2) · pingora-core (2) · crossbeam-channel (2)
- 25 CVECVSS 7.3NEWPoC 24ftp server (25)
- 24 CVE2 critCVSS 6.2NEWPoC 4freescout (24)
- 24 CVE2 critCVSS 6.2NEWPoC 4freescout (24)
- 23 CVECVSS 5.6×3.3PoC 23patient record management system (3) · employee record system (3) · tourism management system (2)
- 23 CVE5 critCVSS 8.4PoC 11tenda rx2 pro (6) · tenda ac10 (3) · tenda fh451 (3)
- 20 CVE1 critCVSS 6.8PoC 1thunderbird (17) · firefox (15) · firefox esr (11)
- 20 CVE2 critCVSS 6.6KEV 1PoC 1sap supplier relationship management (live auction cockpit) (5) · sap service parts management (spm) (2) · sap landscape transformation (pcl basis) (1)
- 20 CVE2 critCVSS 5.5NEWvideograce (20)
- 19 CVE1 critCVSS 5.7sel blueframe os (11) · sel-5056 software-defined network flow controller (4) · sel-3360-2 (1)
- 17 CVE9 critCVSS 8.8PoC 5rax50 firmware (7) · rax5 (7) · ex6200 (6)
| # | Vendor | CVEs | Crit | KEV | Nuclei | Signals | Top products | Δ | |
|---|---|---|---|---|---|---|---|---|---|
| 1 | linux | 550 | · | · | · | PoC 4 | linux kernel (550) · linux (549) | — | |
| 2 | сообщество свободного программного обеспечения | 502 | 9 | · | 2 | Nuclei 2PoC 36 | linux (397) · debian gnu/linux (226) · freescout (24) | — | |
| 3 | ооо «ред софт» | 288 | 4 | · | 1 | Nuclei 1PoC 18 | ред ос (288) | — | |
| 4 | ооо «русбитех-астра» | 288 | 4 | · | 1 | Nuclei 1PoC 17 | astra linux special edition (287) · astra linux common edition (46) · пк "ald pro" (1) | — | |
| 5 | ао "нппкт" | 240 | 4 | · | · | PoC 13 | осон основа оnyx (240) | — | |
| 6 | unknown | 226 | 5 | · | 225 | Nuclei 225PoC 226 | illi link party! (4) · ekc tournament manager (3) · wp maps (3) | — | |
| 7 | redhat | 218 | 2 | · | 1 | Nuclei 1PoC 12 | red hat enterprise linux (204) · red hat enterprise linux 8 (18) · red hat enterprise linux 9 (17) | — | |
| 8 | canonical | 217 | · | · | · | PoC 9 | ubuntu (217) · ubuntu linux (1) · apport (1) | — | |
| 9 | ао «сбертех» | 153 | · | · | · | ×9.6PoC 7 | platform v sberlinux os server (152) · субд «platform v pangolin db» (2) | — | |
| 10 | debian | 145 | · | · | · | ×11.2PoC 4 | debian linux (144) · trixie (1) | — | |
| 11 | phpgurukul | 122 | 3 | · | · | ×14.4PoC 117 | park ticketing management system (7) · company visitor management system (6) · news portal project (6) | — | |
| 12 | microsoft | 85 | 5 | 5 | · | KEV 5PoC 4 | windows server 2025 (server core installation) (40) · windows server 2022 23h2 (40) · windows server 2022, 23h2 edition (server core installation) (40) | — | |
| 13 | apple | 79 | 5 | · | · | macos (67) · ipados (46) · ios and ipados (43) | — | ||
| 14 | totolink | 68 | 12 | · | · | PoC 39 | a3002r firmware (27) · a3002r (27) · a3002ru (17) | — | |
| 15 | campcodes | 61 | · | · | · | PoC 60 | sales and inventory system (24) · online hospital management system (12) · online shopping portal (11) | — | |
| 16 | ао «ивк» | 52 | 1 | · | · | PoC 4 | альт сп 10 (28) · альт 8 сп (28) | — | |
| 17 | dlink | 50 | 2 | · | · | PoC 18 | di-7003g firmware (11) · di-7003gv2 (11) · dir-600l firmware (9) | — | |
| 18 | go | 50 | 11 | · | 2 | Nuclei 2PoC 6 | github.com/mattermost/mattermost/server/v8 (9) · github.com/zitadel/zitadel (2) · github.com/gardener/gardener (2) | — | |
| 19 | intel | 49 | · | · | · | intel iris xe graphics (15) · intel arc graphics (15) · intel data center gpu flex 170 (14) | — | ||
| 20 | cisco | 48 | 1 | · | 1 | Nuclei 1PoC 48 | cisco ios xe software (20) · ios xe (20) · cisco ios xe (11) | — | |
| 21 | pypi | 47 | 5 | · | 1 | Nuclei 1PoC 11 | vllm (9) · langroid (3) · vyper (2) | — | |
| 22 | ibm | 45 | 1 | · | · | db2 (8) · db2 for linux, unix and windows (8) · concert software (4) | — | ||
| 23 | sourcecodester | 45 | · | · | · | PoC 45 | stock management system (8) · online student clearance system (7) · client database management system (6) | — | |
| 24 | d-link | 43 | · | · | · | PoC 15 | di-7003gv2 (11) · dir-600l (9) · dir-619l (7) | — | |
| 25 | packagist | 42 | 5 | 1 | 1 | KEV 1Nuclei 1PoC 10 | mautic/core (5) · typo3/cms-core (4) · nitsan/ns-backup (3) | — | |
| 26 | adobe | 40 | 7 | · | · | coldfusion (8) · substance3d - stager (6) · adobe animate 2023 (6) | — | ||
| 27 | tenda | 39 | 7 | · | · | PoC 18 | rx2 pro firmware (11) · fh451 firmware (4) · w20e firmware (4) | — | |
| 28 | siemens | 38 | 5 | · | · | scalance lpe9403 (12) · scalance lpe9403 firmware (12) · simatic pcs neo v4.1 (4) | — | ||
| 29 | itsourcecode | 36 | · | · | · | PoC 36 | gym management system (15) · restaurant management system (9) · placement management system (6) | — | |
| 30 | maven | 35 | 7 | · | 1 | Nuclei 1PoC 3 | org.apache.inlong:manager-pojo (3) · org.jenkins-ci.plugins:vmanager-plugin (2) · org.graylog2:graylog2-server (2) | — | |
| 31 | novell inc. | 35 | · | · | · | PoC 5 | suse linux enterprise server (31) · suse linux enterprise server for sap applications (29) · opensuse leap (28) | — | |
| 32 | qualcomm | 35 | · | · | · | fastconnect 7800 firmware (30) · wsa8830 firmware (28) · wsa8835 firmware (28) | — | ||
| 33 | qualcomm, inc. | 35 | · | · | · | snapdragon (35) | — | ||
| 34 | samsung | 35 | 2 | 1 | 1 | KEV 1Nuclei 1PoC 1 | android (12) · exynos 1480 firmware (9) · exynos 1330 firmware (8) | — | |
| 35 | freefloat | 33 | · | · | · | NEWPoC 33 | ftp server (33) · freefloat ftp server (21) | — | |
| 36 | npm | 32 | 1 | · | 2 | Nuclei 2PoC 4 | @cloudflare/workers-oauth-provider (4) · passport-wsfed-saml2 (2) · mcp-markdownify-server (2) | — | |
| 37 | abb | 31 | 4 | · | · | NEW×5.2 | matrix series (31) · aspect-enterprise (31) · nexus series (31) | — | |
| 38 | samsung mobile | 30 | · | · | · | samsung mobile devices (13) · samsung gallery (4) · samsung notes (2) | — | ||
| 39 | 29 | 1 | · | · | PoC 2 | chrome (14) · google chrome (14) · android (9) | — | ||
| 40 | crates.io | 25 | 1 | · | · | PoC 4 | sudo-rs (2) · pingora-core (2) · crossbeam-channel (2) | — | |
| 41 | pcman | 25 | · | · | · | NEWPoC 24 | ftp server (25) | — | |
| 42 | freescout | 24 | 2 | · | · | NEWPoC 4 | freescout (24) | — | |
| 43 | freescout-help-desk | 24 | 2 | · | · | NEWPoC 4 | freescout (24) | — | |
| 44 | code-projects | 23 | · | · | · | ×3.3PoC 23 | patient record management system (3) · employee record system (3) · tourism management system (2) | — | |
| 45 | shenzhen tenda technology co., ltd. | 23 | 5 | · | · | PoC 11 | tenda rx2 pro (6) · tenda ac10 (3) · tenda fh451 (3) | — | |
| 46 | mozilla | 20 | 1 | · | · | PoC 1 | thunderbird (17) · firefox (15) · firefox esr (11) | — | |
| 47 | sap_se | 20 | 2 | 1 | · | KEV 1PoC 1 | sap supplier relationship management (live auction cockpit) (5) · sap service parts management (spm) (2) · sap landscape transformation (pcl basis) (1) | — | |
| 48 | ооо "ивс" | 20 | 2 | · | · | NEW | videograce (20) | — | |
| 49 | schweitzer engineering laboratories | 19 | 1 | · | · | sel blueframe os (11) · sel-5056 software-defined network flow controller (4) · sel-3360-2 (1) | — | ||
| 50 | netgear | 17 | 9 | · | · | PoC 5 | rax50 firmware (7) · rax5 (7) · ex6200 (6) | — |
Sectors
Solution categories ranked by distinct CVE count this period.
- Web & CMS Plugins1,003 CVE111 crit3 KEV544 vendorsCVSS 7.2bold page builder (4) · eventon (4) · illi link party\! (4)
- Operating Systems929 CVE39 crit271 KEV30 vendorsCVSS 7.2linux (946) · linux kernel (550) · ред ос (288)
- Enterprise Software668 CVE145 crit8 KEV156 vendorsCVSS 7.6gym management system (15) · innovation (10) · restaurant management system (9)
- Networking Infrastructure388 CVE138 crit7 KEV71 vendorsCVSS 8.1a3002r (27) · a3002r firmware (27) · cisco ios xe software (20)
- OSS Libraries369 CVE44 crit1 KEV110 vendorsCVSS 7.2assimp (20) · gstreamer (6) · pspp (6)
- ICS / OT / IoT180 CVE141 crit5 KEV52 vendorsCVSS 7.9aspect-enterprise (31) · matrix series (31) · nexus series (31)
- Hardware Firmware167 CVE86 crit32 vendorsCVSS 9.5intel arc graphics (15) · intel iris xe graphics (15) · intel data center gpu flex 140 (14)
- Mobile Apps157 CVE36 crit1 KEV10 vendorsCVSS 6.9macos (76) · ipados (59) · ios and ipados (43)
- Security Products130 CVE25 crit12 KEV63 vendorsCVSS 9.2big-ip (9) · pan-os (9) · big-ip access policy manager (8)
- Cloud & SaaS115 CVE33 crit6 KEV66 vendorsCVSS 6.9service (7) · mautic (6) · nextcloud server (6)
- Communications91 CVE7 crit33 vendorsCVSS 7.4ftp server (25) · communigate pro (4) · icewarp mail server (3)
- Consumer Software88 CVE23 crit30 vendorsCVSS 8.1coldfusion (16) · substance 3d stager (11) · adobe connect (8)
- DevTools & CI65 CVE6 crit27 vendorsCVSS 7.0gitlab (21) · opkssh (2) · eclipse jgit (1)
- AI / ML53 CVE22 crit32 vendorsCVSS 9.7vllm (21) · introspect (2) · llamaindex (2)
- Databases43 CVE5 crit17 vendorsCVSS 7.4ibm db2 (5) · ibm db2 connect server (5) · ibm guardium data protection (3)
- Unclassified363 CVE46 crit1 KEV224 vendorsCVSS 6.7di-7003gv2 (11) · gim (10) · p-net (10)
| Sector | CVEs | Crit | KEV | Vendors | Products | Avg CVSS | Top products |
|---|---|---|---|---|---|---|---|
| Web & CMS Plugins▸ 6 | 1,003 | 111 | 3 | 544 | 777 | 7.2 | bold page builder (4) · eventon (4) · illi link party\! (4) |
| Operating Systems▸ 5 | 929 | 39 | 271 | 30 | 311 | 7.2 | linux (946) · linux kernel (550) · ред ос (288) |
| Enterprise Software▸ 7 | 668 | 145 | 8 | 156 | 432 | 7.6 | gym management system (15) · innovation (10) · restaurant management system (9) |
| Networking Infrastructure▸ 5 | 388 | 138 | 7 | 71 | 306 | 8.1 | a3002r (27) · a3002r firmware (27) · cisco ios xe software (20) |
| OSS Libraries▸ 11 | 369 | 44 | 1 | 110 | 308 | 7.2 | assimp (20) · gstreamer (6) · pspp (6) |
| ICS / OT / IoT▸ 6 | 180 | 141 | 5 | 52 | 229 | 7.9 | aspect-enterprise (31) · matrix series (31) · nexus series (31) |
| Hardware Firmware▸ 5 | 167 | 86 | · | 32 | 590 | 9.5 | intel arc graphics (15) · intel iris xe graphics (15) · intel data center gpu flex 140 (14) |
| Mobile Apps▸ 3 | 157 | 36 | 1 | 10 | 54 | 6.9 | macos (76) · ipados (59) · ios and ipados (43) |
| Security Products▸ 6 | 130 | 25 | 12 | 63 | 141 | 9.2 | big-ip (9) · pan-os (9) · big-ip access policy manager (8) |
| Cloud & SaaS▸ 5 | 115 | 33 | 6 | 66 | 130 | 6.9 | service (7) · mautic (6) · nextcloud server (6) |
| Communications▸ 4 | 91 | 7 | · | 33 | 62 | 7.4 | ftp server (25) · communigate pro (4) · icewarp mail server (3) |
| Consumer Software▸ 5 | 88 | 23 | · | 30 | 69 | 8.1 | coldfusion (16) · substance 3d stager (11) · adobe connect (8) |
| DevTools & CI▸ 5 | 65 | 6 | · | 27 | 41 | 7.0 | gitlab (21) · opkssh (2) · eclipse jgit (1) |
| AI / ML▸ 5 | 53 | 22 | · | 32 | 35 | 9.7 | vllm (21) · introspect (2) · llamaindex (2) |
| Databases▸ 5 | 43 | 5 | · | 17 | 35 | 7.4 | ibm db2 (5) · ibm db2 connect server (5) · ibm guardium data protection (3) |
| Unclassified | 363 | 46 | 1 | 224 | 244 | 6.7 | di-7003gv2 (11) · gim (10) · p-net (10) |
Weakness × Sector
Which weaknesses hit which solution categories in May 2025
Cells shaded by share of the sector's hottest weakness. Click a row to open the sector history.
79XSS89SQL Injection74Injection119Memory Buffer Bounds787Out-of-bounds Write476NULL Pointer Dereference352CSRF862Missing Authorization120Buffer Overflow284CWE-284Web & CMS Plugins3851901251399488317Operating Systems41144512932615Enterprise Software782231883101519120OSS Libraries36853774114219Networking Infrastructure1632193294119123ICS / OT / IoT1314312122322Consumer Software265272163224Hardware Firmware51232311210Security Products11125435Cloud & SaaS184317915