month report

January 2006

Data as of Jun 4, 2026, 13:24 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →

January 2006 closed with 514 published CVEs — +193.7% YoY . 49 criticals, oracle led volume, mostly via database server. Biggest breakout: bea at ×12.0 their 12-month median. Top weakness class — CWE-89 (19 CVE). 10 vendors cracked the top-100 for the first time.

Print view

Total CVEs

514

— MoM+193.7% YoY

Severity mix

49 / 175

critical / high

KEV added

0 ransomware-linked

Nuclei coverage

0.0%

0 CVEs with templates

Time to exploit

How fast the community ships detection after a CVE drops.

Days → Nuclei (median)

—

n=0

Within 7 days

—%

Within 30 days

—%

Days → KEV (median)

—

n=0

Weakness × Vendor

What's spreading where in January 2006

Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.

Breakout vendors

CVE count ≥3× their own 12-period median.

12.0×bea12 CVE
6.0×xpdf6 CVE
4.7×freebsd7 CVE
4.4×oracle40 CVE
3.0×trustix3 CVE

First time in top-100

Vendors never in top-100 in the prior 24 periods.

#11rockliffe6 CVE
#15mybulletinboard5 CVE
#20rim4 CVE
#23427bb3 CVE
#27citypost3 CVE
#31e-post corporation3 CVE
#32hummingbird3 CVE
#33incogen3 CVE
#34john lim3 CVE
#35joomla3 CVE

Top vendors

Ranked by distinct CVE count this period.

1oracle—
40 CVE33 critCVSS 9.4
×4.4PoC 4
database server (21) · application server (14) · e-business suite (8)
2linux—
16 CVE2 critCVSS 4.7
PoC 1
linux kernel (16)
3сообщество свободного программного обеспечения—
14 CVECVSS 4.7
debian gnu/linux (14)
4bea—
12 CVECVSS 4.4
×12.0PoC 1
weblogic server (12)
5apple—
8 CVECVSS 6.9
PoC 1
quicktime (7) · airport express (1) · airport extreme (1)
6microsoft—
8 CVE2 critCVSS 8.0
PoC 2
windows xp (4) · windows 2000 (4) · windows 2003 server (4)
7cisco—
7 CVECVSS 6.2
PoC 2
call manager (2) · aironet ap1230ag (1) · aironet ap1240ag (1)
8freebsd—
7 CVE1 critCVSS 4.4
×4.7PoC 1
freebsd (7)
9gentoo foundation inc.—
6 CVE1 critCVSS 6.7
PoC 4
gentoo linux (6)
10ibm—
6 CVE1 critCVSS 6.4
lotus domino (5) · lotus domino enterprise server (5) · lotus notes (5)
11rockliffe—
6 CVE1 critCVSS 6.4
NEWPoC 1
mailsite (6)
12sun—
6 CVECVSS 5.3
solaris (5) · sunos (3) · grid engine (1)
13xpdf—
6 CVE1 critCVSS 7.1
×6.0PoC 4
xpdf (6)
14gentoo—
5 CVE1 critCVSS 6.8
PoC 3
linux (4) · app-crypt pinentry (1) · nview (1)
15mybulletinboard—
5 CVECVSS 5.1
NEWPoC 1
mybulletinboard (5)
16php—
5 CVE1 critCVSS 6.4
php (4) · pear (1)
17suse—
5 CVE1 critCVSS 5.9
PoC 3
suse linux (5)
18kde—
4 CVE1 critCVSS 6.7
PoC 3
kdegraphics (3) · koffice (3) · kpdf (3)
19red hat inc.—
4 CVE2 critCVSS 8.0
red hat enterprise linux (4)
20rim—
4 CVECVSS 5.4
NEW
blackberry enterprise server (3) · blackberry device software (1) · blackberry router (1)
21sco—
4 CVE1 critCVSS 6.9
PoC 4
openserver (4)
22ubuntu—
4 CVE1 critCVSS 6.8
PoC 4
ubuntu linux (4)
23427bb—
3 CVECVSS 6.4
NEWPoC 1
fourtwosevenbb (3)
24bluecoat—
3 CVECVSS 6.9
webproxy (2) · winproxy (1) · proxyav (1)
25broadcom—
3 CVE1 critCVSS 8.1
PoC 2
brightstor arcserve backup laptops desktops (3) · unicenter remote control (2) · brightstor mobile backup (2)
26ca—
3 CVE1 critCVSS 9.4
PoC 2
unicenter remote control (2) · brightstor enterprise backup (1) · etrust audit aries (1)
27citypost—
3 CVECVSS 4.3
NEWPoC 1
php lnkx (1) · simple image editor (1) · simple php upload (1)
28conectiva—
3 CVE1 critCVSS 6.7
PoC 3
linux (3)
29debian—
3 CVE1 critCVSS 6.7
PoC 3
debian linux (3)
30easy software products—
3 CVE1 critCVSS 6.7
PoC 3
cups (3)
31e-post corporation—
3 CVECVSS 6.8
NEW
mail server (3) · spa-pro mail atsolomon (3) · smtp server (1)
32hummingbird—
3 CVECVSS 3.9
NEW
enterprise collaboration (3) · collaboration (1)
33incogen—
3 CVECVSS 5.6
NEW
bugport (3)
34john lim—
3 CVECVSS 6.7
NEWPoC 1
adodb (3)
35joomla—
3 CVE1 critCVSS 6.8
NEW
joomla (2) · joomla\! (1)
36libextractor—
3 CVE1 critCVSS 6.7
NEWPoC 3
libextractor (3)
37mandrakesoft—
3 CVE1 critCVSS 6.7
PoC 3
mandrake linux (3) · mandrake linux corporate server (3)
38mike helton—
3 CVECVSS 5.6
NEWPoC 2
aoblogger (3)
39my little homepage—
3 CVECVSS 4.3
NEWPoC 1
my little forum (1) · my little guestbook (1) · my little weblog (1)
40myphpim—
3 CVECVSS 6.4
NEWPoC 3
myphpim (3)
41ocomon—
3 CVECVSS 4.8
NEW
ocomon (3)
42openbsd—
3 CVECVSS 4.5
PoC 1
openbsd (2) · openssh (1)
43phpclanwebsite—
3 CVECVSS 5.0
NEW
phpclanwebsite (3)
44poppler—
3 CVE1 critCVSS 6.7
NEWPoC 3
poppler (3)
45ralph capper—
3 CVECVSS 4.8
NEW
tinyphpforum (3)
46redhat—
3 CVE1 critCVSS 6.7
PoC 3
enterprise linux (3) · enterprise linux desktop (3) · fedora core (3)
47sgi—
3 CVE1 critCVSS 6.7
PoC 3
propack (3)
48slackware—
3 CVE1 critCVSS 6.7
PoC 3
slackware linux (3)
49tetex—
3 CVE1 critCVSS 6.7
PoC 3
tetex (3)
50trustix—
3 CVE1 critCVSS 6.7
×3.0PoC 3
secure linux (3)

#	Vendor	CVEs	Crit	KEV	Nuclei	Signals	Top products	Δ
1	oracle	40	33	·	·	×4.4PoC 4	database server (21) · application server (14) · e-business suite (8)	—
2	linux	16	2	·	·	PoC 1	linux kernel (16)	—
3	сообщество свободного программного обеспечения	14	·	·	·		debian gnu/linux (14)	—
4	bea	12	·	·	·	×12.0PoC 1	weblogic server (12)	—
5	apple	8	·	·	·	PoC 1	quicktime (7) · airport express (1) · airport extreme (1)	—
6	microsoft	8	2	·	·	PoC 2	windows xp (4) · windows 2000 (4) · windows 2003 server (4)	—
7	cisco	7	·	·	·	PoC 2	call manager (2) · aironet ap1230ag (1) · aironet ap1240ag (1)	—
8	freebsd	7	1	·	·	×4.7PoC 1	freebsd (7)	—
9	gentoo foundation inc.	6	1	·	·	PoC 4	gentoo linux (6)	—
10	ibm	6	1	·	·		lotus domino (5) · lotus domino enterprise server (5) · lotus notes (5)	—
11	rockliffe	6	1	·	·	NEWPoC 1	mailsite (6)	—
12	sun	6	·	·	·		solaris (5) · sunos (3) · grid engine (1)	—
13	xpdf	6	1	·	·	×6.0PoC 4	xpdf (6)	—
14	gentoo	5	1	·	·	PoC 3	linux (4) · app-crypt pinentry (1) · nview (1)	—
15	mybulletinboard	5	·	·	·	NEWPoC 1	mybulletinboard (5)	—
16	php	5	1	·	·		php (4) · pear (1)	—
17	suse	5	1	·	·	PoC 3	suse linux (5)	—
18	kde	4	1	·	·	PoC 3	kdegraphics (3) · koffice (3) · kpdf (3)	—
19	red hat inc.	4	2	·	·		red hat enterprise linux (4)	—
20	rim	4	·	·	·	NEW	blackberry enterprise server (3) · blackberry device software (1) · blackberry router (1)	—
21	sco	4	1	·	·	PoC 4	openserver (4)	—
22	ubuntu	4	1	·	·	PoC 4	ubuntu linux (4)	—
23	427bb	3	·	·	·	NEWPoC 1	fourtwosevenbb (3)	—
24	bluecoat	3	·	·	·		webproxy (2) · winproxy (1) · proxyav (1)	—
25	broadcom	3	1	·	·	PoC 2	brightstor arcserve backup laptops desktops (3) · unicenter remote control (2) · brightstor mobile backup (2)	—
26	ca	3	1	·	·	PoC 2	unicenter remote control (2) · brightstor enterprise backup (1) · etrust audit aries (1)	—
27	citypost	3	·	·	·	NEWPoC 1	php lnkx (1) · simple image editor (1) · simple php upload (1)	—
28	conectiva	3	1	·	·	PoC 3	linux (3)	—
29	debian	3	1	·	·	PoC 3	debian linux (3)	—
30	easy software products	3	1	·	·	PoC 3	cups (3)	—
31	e-post corporation	3	·	·	·	NEW	mail server (3) · spa-pro mail atsolomon (3) · smtp server (1)	—
32	hummingbird	3	·	·	·	NEW	enterprise collaboration (3) · collaboration (1)	—
33	incogen	3	·	·	·	NEW	bugport (3)	—
34	john lim	3	·	·	·	NEWPoC 1	adodb (3)	—
35	joomla	3	1	·	·	NEW	joomla (2) · joomla\! (1)	—
36	libextractor	3	1	·	·	NEWPoC 3	libextractor (3)	—
37	mandrakesoft	3	1	·	·	PoC 3	mandrake linux (3) · mandrake linux corporate server (3)	—
38	mike helton	3	·	·	·	NEWPoC 2	aoblogger (3)	—
39	my little homepage	3	·	·	·	NEWPoC 1	my little forum (1) · my little guestbook (1) · my little weblog (1)	—
40	myphpim	3	·	·	·	NEWPoC 3	myphpim (3)	—
41	ocomon	3	·	·	·	NEW	ocomon (3)	—
42	openbsd	3	·	·	·	PoC 1	openbsd (2) · openssh (1)	—
43	phpclanwebsite	3	·	·	·	NEW	phpclanwebsite (3)	—
44	poppler	3	1	·	·	NEWPoC 3	poppler (3)	—
45	ralph capper	3	·	·	·	NEW	tinyphpforum (3)	—
46	redhat	3	1	·	·	PoC 3	enterprise linux (3) · enterprise linux desktop (3) · fedora core (3)	—
47	sgi	3	1	·	·	PoC 3	propack (3)	—
48	slackware	3	1	·	·	PoC 3	slackware linux (3)	—
49	tetex	3	1	·	·	PoC 3	tetex (3)	—
50	trustix	3	1	·	·	×3.0PoC 3	secure linux (3)	—