month report

April 2003

Data as of Jun 4, 2026, 13:24 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →

April 2003 closed with 397 published CVEs — +3870.0% YoY . 39 criticals, microsoft led volume, mostly via internet explorer. Biggest breakout: openbsd at ×13.0 their 12-month median. Top weakness class — CWE-119 (3 CVE). 10 vendors cracked the top-100 for the first time.

Print view

Total CVEs

397

— MoM+3870.0% YoY

Severity mix

39 / 201

critical / high

KEV added

0 ransomware-linked

Nuclei coverage

0.0%

0 CVEs with templates

Time to exploit

How fast the community ships detection after a CVE drops.

Days → Nuclei (median)

—

n=0

Within 7 days

—%

Within 30 days

—%

Days → KEV (median)

6910

n=1

Detection gap

KEV pressure, no Nuclei coverage

April 2003 · vendors with active exploitation listed by CISA but no public detection template.

KEV 1microsoft61 CVE

Weakness × Vendor

What's spreading where in April 2003

Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.

Breakout vendors

CVE count ≥3× their own 12-period median.

13.0×openbsd13 CVE
12.0×sgi18 CVE
11.0×caldera11 CVE
7.5×freebsd15 CVE
6.0×gnu6 CVE
5.3×red hat inc.21 CVE
5.0×suse5 CVE
5.0×zope5 CVE
4.7×microsoft61 CVE
4.4×mozilla11 CVE

First time in top-100

Vendors never in top-100 in the prior 24 periods.

#20pypi5 CVE
#25acme labs3 CVE
#27bzip3 CVE
#37cray2 CVE
#38efingerd2 CVE
#39emumail2 CVE
#41fraunhofer fit2 CVE
#42gkrellm newsticker2 CVE
#46kerio2 CVE
#47l2tpd2 CVE

Top vendors

Ranked by distinct CVE count this period.

1microsoft—
61 CVE4 critCVSS 6.9
×4.7KEV 1PoC 3
internet explorer (11) · internet information services (11) · internet information server (11)
2red hat inc.—
21 CVE3 critCVSS 5.9
×5.3PoC 4
red hat enterprise linux (21)
3sgi—
18 CVE2 critCVSS 5.7
×12.0
irix (15) · irisconsole (1) · fam (1)
4freebsd—
15 CVE1 critCVSS 5.6
×7.5PoC 2
freebsd (14) · heimdal (1) · point-to-point protocol daemon (1)
5cisco—
13 CVE1 critCVSS 6.8
×3.3
ios (3) · secure access control server (3) · catos (2)
6openbsd—
13 CVE3 critCVSS 7.1
×13.0PoC 3
openbsd (8) · openssh (6)
7redhat—
13 CVECVSS 6.2
×3.3PoC 1
linux (12) · docbook stylesheets (1) · docbook utils (1)
8sun—
13 CVE6 critCVSS 8.5
PoC 2
sunos (11) · solaris (10) · jre (2)
9сообщество свободного программного обеспечения—
12 CVE1 critCVSS 6.6
PoC 2
debian gnu/linux (12)
10caldera—
11 CVE3 critCVSS 7.4
×11.0PoC 1
unixware (6) · openunix (5) · openserver (2)
11hp—
11 CVE4 critCVSS 8.3
PoC 1
hp-ux (6) · cifs-9000 server (2) · advancestack 10base-t switching hub j3210a (1)
12mozilla—
11 CVECVSS 5.3
×4.4PoC 1
bugzilla (10) · mozilla (1)
13oracle—
9 CVE1 critCVSS 7.3
×3.0PoC 1
oracle9i (5) · application server (4) · database server (3)
14apache—
8 CVECVSS 6.3
PoC 1
http server (4) · tomcat (3) · mod python (1)
15debian—
7 CVECVSS 6.3
×3.5
debian linux (6) · mime-support (1)
16compaq—
6 CVE4 critCVSS 9.1
×3.0PoC 1
tru64 (6)
17gnu—
6 CVECVSS 4.3
×6.0
emacs (1) · fileutils (1) · findutils (1)
18macromedia—
6 CVE2 critCVSS 7.4
jrun (3) · flash (1) · flash player (1)
19apple—
5 CVE1 critCVSS 7.5
PoC 1
mac os x (4) · mac os x server (2) · quicktime (1)
20pypi—
5 CVECVSS 6.5
NEW
zope (5)
21squid—
5 CVECVSS 6.5
×3.3
squid (5)
22suse—
5 CVECVSS 7.4
×5.0
suse linux (5)
23zope—
5 CVECVSS 6.5
×5.0
zope (5)
24symantec—
4 CVECVSS 6.9
enterprise firewall (3) · gateway security (1) · norton internet security (1)
25acme labs—
3 CVECVSS 5.8
NEW
thttpd (2) · acme server (1)
26aprelium technologies—
3 CVECVSS 5.0
abyss web server (3)
27bzip—
3 CVECVSS 2.8
NEW
bzip2 (3)
28ethereal group—
3 CVECVSS 5.8
ethereal (3)
29ibm—
3 CVE1 critCVSS 6.4
aix (3)
30maven—
3 CVECVSS 5.8
×3.0
org.apache.tomcat:tomcat (3)
31netbsd—
3 CVECVSS 6.2
×3.0PoC 1
netbsd (3)
32sendmail—
3 CVE1 critCVSS 7.8
PoC 1
sendmail (3) · sendmail switch (1)
33analogx—
2 CVECVSS 7.5
simpleserver shout (1) · simpleserver www (1)
34broadcom—
2 CVE1 critCVSS 8.2
arcserve backup (2) · arcserve backup 2000 (2)
35ca—
2 CVE1 critCVSS 8.2
arcserve backup 2000 (2)
36conectiva—
2 CVECVSS 5.9
linux (2)
37cray—
2 CVECVSS 6.7
NEW
unicos (2)
38efingerd—
2 CVE1 critCVSS 7.3
NEW
efingerd (2)
39emumail—
2 CVECVSS 6.1
NEW
emumail (2) · emumail red hat linux (2) · emumail unix (2)
40fetchmail—
2 CVECVSS 3.5
fetchmail (2)
41fraunhofer fit—
2 CVECVSS 7.5
NEWPoC 1
bscw (2)
42gkrellm newsticker—
2 CVECVSS 6.3
NEW
gkrellm newsticker (2)
43hosting controller—
2 CVECVSS 7.0
PoC 1
hosting controller (2)
44hylafax—
2 CVECVSS 6.3
hylafax (2)
45ipswitch—
2 CVE1 critCVSS 8.8
PoC 1
imail (2)
46kerio—
2 CVECVSS 7.5
NEWPoC 2
personal firewall 2 (2)
47l2tpd—
2 CVECVSS 6.3
NEW
l2tpd (2)
48linux—
2 CVECVSS 5.5
linux kernel (2)
49mandrakesoft—
2 CVECVSS 5.9
mandrake linux (2) · mandrake linux corporate server (1) · mandrake single network firewall (1)
50netscape—
2 CVECVSS 3.5
PoC 1
communicator (1) · navigator (1)

#	Vendor	CVEs	Crit	KEV	Nuclei	Signals	Top products	Δ
1	microsoft	61	4	1	·	×4.7KEV 1PoC 3	internet explorer (11) · internet information services (11) · internet information server (11)	—
2	red hat inc.	21	3	·	·	×5.3PoC 4	red hat enterprise linux (21)	—
3	sgi	18	2	·	·	×12.0	irix (15) · irisconsole (1) · fam (1)	—
4	freebsd	15	1	·	·	×7.5PoC 2	freebsd (14) · heimdal (1) · point-to-point protocol daemon (1)	—
5	cisco	13	1	·	·	×3.3	ios (3) · secure access control server (3) · catos (2)	—
6	openbsd	13	3	·	·	×13.0PoC 3	openbsd (8) · openssh (6)	—
7	redhat	13	·	·	·	×3.3PoC 1	linux (12) · docbook stylesheets (1) · docbook utils (1)	—
8	sun	13	6	·	·	PoC 2	sunos (11) · solaris (10) · jre (2)	—
9	сообщество свободного программного обеспечения	12	1	·	·	PoC 2	debian gnu/linux (12)	—
10	caldera	11	3	·	·	×11.0PoC 1	unixware (6) · openunix (5) · openserver (2)	—
11	hp	11	4	·	·	PoC 1	hp-ux (6) · cifs-9000 server (2) · advancestack 10base-t switching hub j3210a (1)	—
12	mozilla	11	·	·	·	×4.4PoC 1	bugzilla (10) · mozilla (1)	—
13	oracle	9	1	·	·	×3.0PoC 1	oracle9i (5) · application server (4) · database server (3)	—
14	apache	8	·	·	·	PoC 1	http server (4) · tomcat (3) · mod python (1)	—
15	debian	7	·	·	·	×3.5	debian linux (6) · mime-support (1)	—
16	compaq	6	4	·	·	×3.0PoC 1	tru64 (6)	—
17	gnu	6	·	·	·	×6.0	emacs (1) · fileutils (1) · findutils (1)	—
18	macromedia	6	2	·	·		jrun (3) · flash (1) · flash player (1)	—
19	apple	5	1	·	·	PoC 1	mac os x (4) · mac os x server (2) · quicktime (1)	—
20	pypi	5	·	·	·	NEW	zope (5)	—
21	squid	5	·	·	·	×3.3	squid (5)	—
22	suse	5	·	·	·	×5.0	suse linux (5)	—
23	zope	5	·	·	·	×5.0	zope (5)	—
24	symantec	4	·	·	·		enterprise firewall (3) · gateway security (1) · norton internet security (1)	—
25	acme labs	3	·	·	·	NEW	thttpd (2) · acme server (1)	—
26	aprelium technologies	3	·	·	·		abyss web server (3)	—
27	bzip	3	·	·	·	NEW	bzip2 (3)	—
28	ethereal group	3	·	·	·		ethereal (3)	—
29	ibm	3	1	·	·		aix (3)	—
30	maven	3	·	·	·	×3.0	org.apache.tomcat:tomcat (3)	—
31	netbsd	3	·	·	·	×3.0PoC 1	netbsd (3)	—
32	sendmail	3	1	·	·	PoC 1	sendmail (3) · sendmail switch (1)	—
33	analogx	2	·	·	·		simpleserver shout (1) · simpleserver www (1)	—
34	broadcom	2	1	·	·		arcserve backup (2) · arcserve backup 2000 (2)	—
35	ca	2	1	·	·		arcserve backup 2000 (2)	—
36	conectiva	2	·	·	·		linux (2)	—
37	cray	2	·	·	·	NEW	unicos (2)	—
38	efingerd	2	1	·	·	NEW	efingerd (2)	—
39	emumail	2	·	·	·	NEW	emumail (2) · emumail red hat linux (2) · emumail unix (2)	—
40	fetchmail	2	·	·	·		fetchmail (2)	—
41	fraunhofer fit	2	·	·	·	NEWPoC 1	bscw (2)	—
42	gkrellm newsticker	2	·	·	·	NEW	gkrellm newsticker (2)	—
43	hosting controller	2	·	·	·	PoC 1	hosting controller (2)	—
44	hylafax	2	·	·	·		hylafax (2)	—
45	ipswitch	2	1	·	·	PoC 1	imail (2)	—
46	kerio	2	·	·	·	NEWPoC 2	personal firewall 2 (2)	—
47	l2tpd	2	·	·	·	NEW	l2tpd (2)	—
48	linux	2	·	·	·		linux kernel (2)	—
49	mandrakesoft	2	·	·	·		mandrake linux (2) · mandrake linux corporate server (1) · mandrake single network firewall (1)	—
50	netscape	2	·	·	·	PoC 1	communicator (1) · navigator (1)	—