month report
September 2025
Data as of Jun 11, 2026, 06:05 UTCSnapshot v1 Sources CVEList V5+NVD+GHSA+CSAF+FSTEC BDU+CISA KEV+EPSS+Nuclei templates Methodology →
September 2025 closed with 4,664 published CVEs. 278 criticals, 16 added to CISA KEV (1 ransomware-linked). linux led volume, mostly via linux kernel. Top weakness class — CWE-79 (696 CVE). 10 vendors cracked the top-100 for the first time.
Total CVEs
4,664
— MoM— YoY
Severity mix
278 / 1,422
critical / high
KEV added
16
1 ransomware-linked
Nuclei coverage
18.5%
862 CVEs with templates
Time to exploit
How fast the community ships detection after a CVE drops.
Days → Nuclei (median)
165.1
n=862
Within 7 days
0.0%
Within 30 days
0.0%
Days → KEV (median)
16
n=14
Detection gap
KEV pressure, no Nuclei coverage
September 2025 · vendors with active exploitation listed by CISA but no public detection template.
- KEV 4google186 CVE
- KEV 2ооо «русбитех-астра»288 CVE
- KEV 2samsung mobile40 CVE
- KEV 2samsung39 CVE
- KEV 1ао «ивк»174 CVE
- KEV 1debian139 CVE
- KEV 1ао «сбертех»126 CVE
- KEV 1microsoft109 CVE
Weakness × Vendor
What's spreading where in September 2025
Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.
79XSS89SQL Injection74Injection862Missing Authorization476NULL Pointer Dereference352CSRF401CWE-401416Use After Free94Code Injection284CWE-284linux14112479сообщество свободного программного обеспечения3212697673red hat inc.646635ооо «русбитех-астра»1143382711canonical ltd.1455521ао «сбертех»563522ао «ивк»1258191google2111103ооо «ред софт»22252101debian25513microsoft corp2918npm1112163
Most discussed CVEs — September 2025
No CVE mentions in the news this month yet.
First time in top-100
Vendors never in top-100 in the prior 24 periods.
- #25vasion41 CVE
- #31apprain32 CVE
- #40portabilis26 CVE
- #47akinsoft21 CVE
- #50wavlink19 CVE
- #55wavlink technology ltd.16 CVE
- #64dragonflyoss11 CVE
- #65jeecg11 CVE
- #68bmc10 CVE
- #69copeland lp10 CVE
Top vendors
Ranked by distinct CVE count this period.
- 737 CVECVSS 6.1PoC 3linux kernel (737) · linux (737)
- 540 CVE9 critCVSS 6.2Nuclei 2PoC 13linux (484) · debian gnu/linux (292) · pytorch (12)
- 288 CVE6 critCVSS 6.5KEV 2PoC 10astra linux special edition (280) · astra linux common edition (42) · parsec (31)
- 267 CVE4 critCVSS 6.6Nuclei 1PoC 2red hat enterprise linux (251) · red hat enterprise linux 9 (13) · red hat enterprise linux 10 (13)
- 198 CVE1 critCVSS 6.2PoC 2ubuntu (198)
- 186 CVE9 critCVSS 7.0KEV 4PoC 3android (166) · google chrome (13) · chrome (12)
- 174 CVE2 critCVSS 6.4KEV 1PoC 5альт сп 10 (174) · альт 8 сп (57)
- 139 CVECVSS 6.4KEV 1PoC 3debian linux (139)
- 133 CVE7 critCVSS 6.1KEV 2Nuclei 1PoC 15ред ос (133) · ред база данных (4)
- 126 CVECVSS 6.2KEV 1PoC 7platform v sberlinux os server (126)
- 109 CVE5 critCVSS 7.1KEV 1PoC 6windows server 2025 (59) · windows server 2025 (server core installation) (59) · windows server 2022, 23h2 edition (server core installation) (57)
- 100 CVE12 critCVSS 7.5Nuclei 5PoC 33flowise (6) · @anthropic-ai/claude-code (4) · express-xss-sanitizer (2)
- 90 CVE6 critCVSS 6.1Nuclei 4PoC 1com.liferay.portal:release.portal.bom (8) · com.liferay.portal:com.liferay.portal.impl (5) · org.jenkins-ci.main:jenkins-core (3)
- 83 CVE6 critCVSS 6.4macos (75) · ios and ipados (29) · iphone os (28)
- 72 CVECVSS 6.8PoC 72online learning management system (18) · grocery sales and inventory system (15) · computer sales and inventory system (10)
- 69 CVECVSS 6.6PoC 67pet grooming management software (20) · online student file management system (8) · online exam form submission (7)
- 57 CVE4 critCVSS 6.9Nuclei 2PoC 10picklescan (6) · ethyca-fides (4) · ml-logger (3)
- 55 CVE11 critCVSS 6.8Nuclei 4PoC 8d7y.io/dragonfly/v2 (11) · github.com/dragonflyoss/dragonfly (11) · github.com/mattermost/mattermost/server/v8 (6)
- 55 CVECVSS 6.4PoC 54pos point of sale system (9) · student information management system (8) · open source job portal (7)
- 50 CVECVSS 5.9dxp (50) · digital experience platform (49) · portal (49)
- 49 CVE9 critCVSS 7.1PoC 34online fire reporting system (9) · beauty parlour management system (9) · small crm (5)
- 47 CVE6 critCVSS 7.3KEV 1PoC 4осон основа оnyx (47)
- 45 CVE2 critCVSS 7.4PoC 22g3 firmware (13) · f3 firmware (5) · ac18 firmware (4)
- 44 CVECVSS 5.7concert (7) · concert software (7) · watsonx.data (4)
- 41 CVE19 critCVSS 8.5NEWPoC 19virtual appliance application (41) · virtual appliance host (41) · print virtual appliance host (41)
- 40 CVECVSS 5.7KEV 2samsung mobile devices (28) · s assistant (3) · samsung calendar (1)
- 40 CVE2 critCVSS 7.5PoC 19tenda g3 (13) · tenda f3 (5) · tenda ac9 (3)
- 39 CVECVSS 6.0KEV 2android (26) · sassistant (3) · notes (2)
- 36 CVE1 critCVSS 5.7nvidia cuda toolkit (12) · cuda toolkit (10) · triton inference server (5)
- 34 CVECVSS 6.5PoC 32hostel management system (8) · simple scheduling system (6) · online bidding system (6)
- 32 CVE3 critCVSS 5.8NEWapprain (32) · apprain cmf (32)
- 32 CVE2 critCVSS 5.9KEV 3Nuclei 1PoC 32cisco ios xe software (14) · cisco ios xe (5) · ios (5)
- 31 CVECVSS 6.7PoC 29online bidding system (6) · simple scheduling system (6) · online hotel reservation system (5)
- 30 CVECVSS 7.8cobalt (22) · graphite (8)
- 30 CVECVSS 7.8cobalt (22) · graphite (8)
- 28 CVECVSS 5.7amd ryzen™ 7030 series mobile processors with radeon™ graphics (12) · amd ryzen™ 5000 series mobile processors with radeon™ graphics (12) · amd ryzen™ 4000 series mobile processors with radeon™ graphics (11)
- 28 CVE1 critCVSS 6.0KEV 1Nuclei 2PoC 4mautic/core (4) · typo3/cms-core (3) · typo3/cms-backend (3)
- 27 CVECVSS 6.7PoC 26hostel management system (9) · open source job portal (7) · sports management system (6)
- 27 CVECVSS 6.8PoC 22dir-823x firmware (12) · dir-823x (12) · dir-852 firmware (4)
- 26 CVECVSS 5.2NEWPoC 24i-educar (26)
- 25 CVECVSS 5.8ibm security verify information queue (3) · diamondback tape (2) · ibm license metric tool (2)
- 24 CVE2 critCVSS 6.8KEV 1Nuclei 3experience manager (7) · adobe experience manager (7) · after effects (3)
- 24 CVECVSS 6.7PoC 19dir-823x (11) · dir-852 (4) · di-8200g (2)
- 24 CVE2 critCVSS 6.4pytorch (12) · dragonfly (11) · yocto (1)
- 24 CVE2 critCVSS 8.2wsa8835 firmware (18) · wsa8830 firmware (18) · fastconnect 7800 firmware (17)
- 23 CVE2 critCVSS 7.7snapdragon (23)
- 21 CVE1 critCVSS 6.4NEWmyrezzta (5) · limondesk (4) · octocloud (4)
- 21 CVECVSS 6.4PoC 20pet grooming management software (21)
- 21 CVE3 critCVSS 6.1sap hcm (my timesheet fiori 2.0 application) (3) · sap bi platform (1) · sap business one (sld) (1)
- 19 CVECVSS 6.4NEWPoC 16wl-nu516u1 firmware (8) · wl-wn578w2 (7) · wl-wn578w2 firmware (7)
| # | Vendor | CVEs | Crit | KEV | Nuclei | Signals | Top products | Δ | |
|---|---|---|---|---|---|---|---|---|---|
| 1 | linux | 737 | · | · | · | PoC 3 | linux kernel (737) · linux (737) | — | |
| 2 | сообщество свободного программного обеспечения | 540 | 9 | · | 2 | Nuclei 2PoC 13 | linux (484) · debian gnu/linux (292) · pytorch (12) | — | |
| 3 | ооо «русбитех-астра» | 288 | 6 | 2 | · | KEV 2PoC 10 | astra linux special edition (280) · astra linux common edition (42) · parsec (31) | — | |
| 4 | redhat | 267 | 4 | · | 1 | Nuclei 1PoC 2 | red hat enterprise linux (251) · red hat enterprise linux 9 (13) · red hat enterprise linux 10 (13) | — | |
| 5 | canonical | 198 | 1 | · | · | PoC 2 | ubuntu (198) | — | |
| 6 | 186 | 9 | 4 | · | KEV 4PoC 3 | android (166) · google chrome (13) · chrome (12) | — | ||
| 7 | ао «ивк» | 174 | 2 | 1 | · | KEV 1PoC 5 | альт сп 10 (174) · альт 8 сп (57) | — | |
| 8 | debian | 139 | · | 1 | · | KEV 1PoC 3 | debian linux (139) | — | |
| 9 | ооо «ред софт» | 133 | 7 | 2 | 1 | KEV 2Nuclei 1PoC 15 | ред ос (133) · ред база данных (4) | — | |
| 10 | ао «сбертех» | 126 | · | 1 | · | KEV 1PoC 7 | platform v sberlinux os server (126) | — | |
| 11 | microsoft | 109 | 5 | 1 | · | KEV 1PoC 6 | windows server 2025 (59) · windows server 2025 (server core installation) (59) · windows server 2022, 23h2 edition (server core installation) (57) | — | |
| 12 | npm | 100 | 12 | · | 5 | Nuclei 5PoC 33 | flowise (6) · @anthropic-ai/claude-code (4) · express-xss-sanitizer (2) | — | |
| 13 | maven | 90 | 6 | · | 4 | Nuclei 4PoC 1 | com.liferay.portal:release.portal.bom (8) · com.liferay.portal:com.liferay.portal.impl (5) · org.jenkins-ci.main:jenkins-core (3) | — | |
| 14 | apple | 83 | 6 | · | · | macos (75) · ios and ipados (29) · iphone os (28) | — | ||
| 15 | campcodes | 72 | · | · | · | PoC 72 | online learning management system (18) · grocery sales and inventory system (15) · computer sales and inventory system (10) | — | |
| 16 | sourcecodester | 69 | · | · | · | PoC 67 | pet grooming management software (20) · online student file management system (8) · online exam form submission (7) | — | |
| 17 | pypi | 57 | 4 | · | 2 | Nuclei 2PoC 10 | picklescan (6) · ethyca-fides (4) · ml-logger (3) | — | |
| 18 | go | 55 | 11 | · | 4 | Nuclei 4PoC 8 | d7y.io/dragonfly/v2 (11) · github.com/dragonflyoss/dragonfly (11) · github.com/mattermost/mattermost/server/v8 (6) | — | |
| 19 | itsourcecode | 55 | · | · | · | PoC 54 | pos point of sale system (9) · student information management system (8) · open source job portal (7) | — | |
| 20 | liferay | 50 | · | · | · | dxp (50) · digital experience platform (49) · portal (49) | — | ||
| 21 | phpgurukul | 49 | 9 | · | · | PoC 34 | online fire reporting system (9) · beauty parlour management system (9) · small crm (5) | — | |
| 22 | ао "нппкт" | 47 | 6 | 1 | · | KEV 1PoC 4 | осон основа оnyx (47) | — | |
| 23 | tenda | 45 | 2 | · | · | PoC 22 | g3 firmware (13) · f3 firmware (5) · ac18 firmware (4) | — | |
| 24 | ibm | 44 | · | · | · | concert (7) · concert software (7) · watsonx.data (4) | — | ||
| 25 | vasion | 41 | 19 | · | · | NEWPoC 19 | virtual appliance application (41) · virtual appliance host (41) · print virtual appliance host (41) | — | |
| 26 | samsung mobile | 40 | · | 2 | · | KEV 2 | samsung mobile devices (28) · s assistant (3) · samsung calendar (1) | — | |
| 27 | shenzhen tenda technology co., ltd. | 40 | 2 | · | · | PoC 19 | tenda g3 (13) · tenda f3 (5) · tenda ac9 (3) | — | |
| 28 | samsung | 39 | · | 2 | · | KEV 2 | android (26) · sassistant (3) · notes (2) | — | |
| 29 | nvidia | 36 | 1 | · | · | nvidia cuda toolkit (12) · cuda toolkit (10) · triton inference server (5) | — | ||
| 30 | code-projects | 34 | · | · | · | PoC 32 | hostel management system (8) · simple scheduling system (6) · online bidding system (6) | — | |
| 31 | apprain | 32 | 3 | · | · | NEW | apprain (32) · apprain cmf (32) | — | |
| 32 | cisco | 32 | 2 | 3 | 1 | KEV 3Nuclei 1PoC 32 | cisco ios xe software (14) · cisco ios xe (5) · ios (5) | — | |
| 33 | fabian | 31 | · | · | · | PoC 29 | online bidding system (6) · simple scheduling system (6) · online hotel reservation system (5) | — | |
| 34 | ashlar | 30 | · | · | · | cobalt (22) · graphite (8) | — | ||
| 35 | ashlar-vellum | 30 | · | · | · | cobalt (22) · graphite (8) | — | ||
| 36 | amd | 28 | · | · | · | amd ryzen™ 7030 series mobile processors with radeon™ graphics (12) · amd ryzen™ 5000 series mobile processors with radeon™ graphics (12) · amd ryzen™ 4000 series mobile processors with radeon™ graphics (11) | — | ||
| 37 | packagist | 28 | 1 | 1 | 2 | KEV 1Nuclei 2PoC 4 | mautic/core (4) · typo3/cms-core (3) · typo3/cms-backend (3) | — | |
| 38 | angeljudesuarez | 27 | · | · | · | PoC 26 | hostel management system (9) · open source job portal (7) · sports management system (6) | — | |
| 39 | dlink | 27 | · | · | · | PoC 22 | dir-823x firmware (12) · dir-823x (12) · dir-852 firmware (4) | — | |
| 40 | portabilis | 26 | · | · | · | NEWPoC 24 | i-educar (26) | — | |
| 41 | ibm corp. | 25 | · | · | · | ibm security verify information queue (3) · diamondback tape (2) · ibm license metric tool (2) | — | ||
| 42 | adobe | 24 | 2 | 1 | 3 | KEV 1Nuclei 3 | experience manager (7) · adobe experience manager (7) · after effects (3) | — | |
| 43 | d-link | 24 | · | · | · | PoC 19 | dir-823x (11) · dir-852 (4) · di-8200g (2) | — | |
| 44 | linuxfoundation | 24 | 2 | · | · | pytorch (12) · dragonfly (11) · yocto (1) | — | ||
| 45 | qualcomm | 24 | 2 | · | · | wsa8835 firmware (18) · wsa8830 firmware (18) · fastconnect 7800 firmware (17) | — | ||
| 46 | qualcomm, inc. | 23 | 2 | · | · | snapdragon (23) | — | ||
| 47 | akinsoft | 21 | 1 | · | · | NEW | myrezzta (5) · limondesk (4) · octocloud (4) | — | |
| 48 | mayurik | 21 | · | · | · | PoC 20 | pet grooming management software (21) | — | |
| 49 | sap_se | 21 | 3 | · | · | sap hcm (my timesheet fiori 2.0 application) (3) · sap bi platform (1) · sap business one (sld) (1) | — | ||
| 50 | wavlink | 19 | · | · | · | NEWPoC 16 | wl-nu516u1 firmware (8) · wl-wn578w2 (7) · wl-wn578w2 firmware (7) | — |
Sectors
Solution categories ranked by distinct CVE count this period.
- Operating Systems1,134 CVE85 crit16 KEV32 vendorsCVSS 8.8linux (1221) · linux kernel (737) · debian gnu/linux (292)
- Web & CMS Plugins1,043 CVE77 crit10 KEV511 vendorsCVSS 6.7dxp (50) · digital experience platform (49) · portal (49)
- Enterprise Software577 CVE150 crit7 KEV149 vendorsCVSS 7.7print virtual appliance host (41) · virtual appliance application (41) · virtual appliance host (41)
- OSS Libraries487 CVE55 crit2 KEV113 vendorsCVSS 7.5flowise (6) · @anthropic-ai/claude-code (4) · @lobehub/chat (2)
- Mobile Apps314 CVE79 crit9 KEV9 vendorsCVSS 6.8android (258) · google chrome (13) · chrome (12)
- Networking Infrastructure236 CVE68 crit20 KEV58 vendorsCVSS 8.6cisco ios xe software (14) · wl-wn578w2 (14) · g3 firmware (13)
- Hardware Firmware173 CVE695 crit42 vendorsCVSS 8.2nvidia cuda toolkit (24) · amd ryzen™ 5000 series mobile processors with radeon™ graphics (12) · amd ryzen™ 7030 series mobile processors with radeon™ graphics (12)
- ICS / OT / IoT172 CVE204 crit59 vendorsCVSS 9.6e3 supervisory controller firmware (9) · плк fastwel cpm810-03 (9) · плк fastwel сpm723-01 (9)
- Consumer Software140 CVE19 crit4 KEV45 vendorsCVSS 9.8cobalt (44) · graphite (16) · pdf editor (16)
- Cloud & SaaS135 CVE22 crit19 KEV68 vendorsCVSS 7.9mautic (4) · remote clinic (4) · n8n (3)
- Security Products86 CVE9 crit51 vendorsCVSS 8.2avreg (4) · fides (4) · cloud saml sso – single sign on login (2)
- AI / ML79 CVE22 crit42 vendorsCVSS 7.9pytorch (12) · dragonfly (11) · transformers (5)
- DevTools & CI76 CVE7 crit31 vendorsCVSS 7.5indoor connect 8855 (5) · indoor connect 8855 firmware (5) · swagger petstore (3)
- Communications51 CVE2 KEV33 vendorsCVSS 7.7mattermost (8) · mattermost server (6) · danny-avila/librechat (3)
- Databases42 CVE4 crit21 vendorsCVSS 9.8ibm security verify information queue (3) · diamondback tape (2) · ibm license metric tool (2)
- Unclassified374 CVE43 crit3 KEV241 vendorsCVSS 6.3platform (18) · мсвсфера (14) · flagforge (12)
| Sector | CVEs | Crit | KEV | Vendors | Products | Avg CVSS | Top products |
|---|---|---|---|---|---|---|---|
| Operating Systems▸ 5 | 1,134 | 85 | 16 | 32 | 320 | 8.8 | linux (1221) · linux kernel (737) · debian gnu/linux (292) |
| Web & CMS Plugins▸ 6 | 1,043 | 77 | 10 | 511 | 679 | 6.7 | dxp (50) · digital experience platform (49) · portal (49) |
| Enterprise Software▸ 7 | 577 | 150 | 7 | 149 | 546 | 7.7 | print virtual appliance host (41) · virtual appliance application (41) · virtual appliance host (41) |
| OSS Libraries▸ 11 | 487 | 55 | 2 | 113 | 431 | 7.5 | flowise (6) · @anthropic-ai/claude-code (4) · @lobehub/chat (2) |
| Mobile Apps▸ 3 | 314 | 79 | 9 | 9 | 53 | 6.8 | android (258) · google chrome (13) · chrome (12) |
| Networking Infrastructure▸ 6 | 236 | 68 | 20 | 58 | 245 | 8.6 | cisco ios xe software (14) · wl-wn578w2 (14) · g3 firmware (13) |
| Hardware Firmware▸ 5 | 173 | 695 | · | 42 | 1,122 | 8.2 | nvidia cuda toolkit (24) · amd ryzen™ 5000 series mobile processors with radeon™ graphics (12) · amd ryzen™ 7030 series mobile processors with radeon™ graphics (12) |
| ICS / OT / IoT▸ 5 | 172 | 204 | · | 59 | 403 | 9.6 | e3 supervisory controller firmware (9) · плк fastwel cpm810-03 (9) · плк fastwel сpm723-01 (9) |
| Consumer Software▸ 5 | 140 | 19 | 4 | 45 | 100 | 9.8 | cobalt (44) · graphite (16) · pdf editor (16) |
| Cloud & SaaS▸ 5 | 135 | 22 | 19 | 68 | 126 | 7.9 | mautic (4) · remote clinic (4) · n8n (3) |
| Security Products▸ 6 | 86 | 9 | · | 51 | 63 | 8.2 | avreg (4) · fides (4) · cloud saml sso – single sign on login (2) |
| AI / ML▸ 4 | 79 | 22 | · | 42 | 47 | 7.9 | pytorch (12) · dragonfly (11) · transformers (5) |
| DevTools & CI▸ 5 | 76 | 7 | · | 31 | 42 | 7.5 | indoor connect 8855 (5) · indoor connect 8855 firmware (5) · swagger petstore (3) |
| Communications▸ 4 | 51 | · | 2 | 33 | 51 | 7.7 | mattermost (8) · mattermost server (6) · danny-avila/librechat (3) |
| Databases▸ 3 | 42 | 4 | · | 21 | 38 | 9.8 | ibm security verify information queue (3) · diamondback tape (2) · ibm license metric tool (2) |
| Unclassified | 374 | 43 | 3 | 241 | 270 | 6.3 | platform (18) · мсвсфера (14) · flagforge (12) |
Weakness × Sector
Which weaknesses hit which solution categories in September 2025
Cells shaded by share of the sector's hottest weakness. Click a row to open the sector history.
79XSS89SQL Injection74Injection862Missing Authorization476NULL Pointer Dereference352CSRF401CWE-401416Use After Free94Code Injection284CWE-284Operating Systems35221591154119336Web & CMS Plugins42422818211710016920Enterprise Software10815312316873826OSS Libraries711031214427186Networking Infrastructure17129342211ICS / OT / IoT101333284Consumer Software19543141545Hardware Firmware52131847Cloud & SaaS29628171155Security Products19321216