month report

August 2008

Data as of Jun 4, 2026, 13:25 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →

August 2008 closed with 374 published CVEs — -29.8% YoY . 62 criticals, microsoft led volume, mostly via office. Biggest breakout: canonical at ×4.0 their 12-month median. Top weakness class — CWE-89 (73 CVE). 10 vendors cracked the top-100 for the first time.

Print view

Total CVEs

374

— MoM-29.8% YoY

Severity mix

62 / 137

critical / high

KEV added

0 ransomware-linked

Nuclei coverage

0.3%

1 CVEs with templates

Time to exploit

How fast the community ships detection after a CVE drops.

Days → Nuclei (median)

6400.2

n=1

Within 7 days

0.0%

Within 30 days

0.0%

Days → KEV (median)

4958

n=1

Weakness × Vendor

What's spreading where in August 2008

Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.

Breakout vendors

CVE count ≥3× their own 12-period median.

4.0×canonical8 CVE
4.0×microworld technologies4 CVE
3.0×hotscripts3 CVE

First time in top-100

Vendors never in top-100 in the prior 24 periods.

#7yourfreeworld10 CVE
#15python5 CVE
#17ruby-lang5 CVE
#18lussumo4 CVE
#20openfreeway4 CVE
#21pozscripts4 CVE
#22spacetag4 CVE
#23turnkeywebtools4 CVE
#25fedora3 CVE
#26harmoni3 CVE

Top vendors

Ranked by distinct CVE count this period.

1microsoft—
28 CVE22 critCVSS 8.8
PoC 3
office (10) · internet explorer (6) · office converter pack (5)
2sun—
13 CVE4 critCVSS 7.3
PoC 1
opensolaris (6) · solaris (6) · sunos (4)
3сообщество свободного программного обеспечения—
12 CVE1 critCVSS 6.3
PoC 10
debian gnu/linux (12)
4apple—
10 CVE4 critCVSS 7.2
mac os x (3) · coregraphics (2) · iphone os (1)
5ibm—
10 CVE1 critCVSS 6.1
db2 universal database (7) · lotus quickr (1) · rational clearquest (1)
6redhat—
10 CVE2 critCVSS 4.8
directory server (4) · enterprise linux server (3) · enterprise linux desktop (3)
7yourfreeworld—
10 CVECVSS 7.5
NEWPoC 10
ad board script (1) · ad-exchange script (1) · banner management script (1)
8linux—
9 CVE1 critCVSS 5.7
PoC 4
linux kernel (8) · ipsec tools racoon daemon (1)
9canonical—
8 CVECVSS 4.7
×4.0PoC 4
ubuntu linux (8)
10debian—
7 CVECVSS 4.8
PoC 4
debian linux (7)
11drupal—
7 CVECVSS 5.2
drupal (6) · suggested terms module (1) · upload module (1)
12apache—
5 CVECVSS 5.1
PoC 2
tomcat (3) · http server (1) · openoffice (1)
13gentoo foundation inc.—
5 CVE1 critCVSS 6.6
PoC 2
gentoo linux (5)
14hp—
5 CVE2 critCVSS 8.3
hp-ux (3) · linux imaging and printing project (2) · system administration manager (1)
15python—
5 CVECVSS 7.0
NEWPoC 3
python (5)
16red hat inc.—
5 CVE1 critCVSS 6.2
PoC 2
red hat enterprise linux (5)
17ruby-lang—
5 CVECVSS 6.6
NEWPoC 5
ruby (5)
18lussumo—
4 CVECVSS 4.9
NEW
vanilla (4)
19microworld technologies—
4 CVECVSS 5.5
×4.0PoC 1
mailscan (4)
20openfreeway—
4 CVECVSS 6.2
NEWPoC 1
freeway (4)
21pozscripts—
4 CVECVSS 7.5
NEWPoC 3
classified ads (2) · greencart php shopping cart (1) · tubeguru video sharing script (1)
22spacetag—
4 CVE2 critCVSS 7.3
NEW
lacoodast (4)
23turnkeywebtools—
4 CVECVSS 7.3
NEWPoC 4
php live helper (3) · sunshop shopping cart (1)
24adobe—
3 CVECVSS 4.3
presenter (2) · flash player (1)
25fedora—
3 CVECVSS 6.4
NEW
directory server (3)
26harmoni—
3 CVECVSS 5.1
NEWPoC 1
harmoni (3)
27hotscripts—
3 CVECVSS 5.6
NEW×3.0PoC 1
cyboards php lite (3)
28ignite realtime—
3 CVECVSS 4.3
NEW
openfire (3)
29maven—
3 CVECVSS 4.5
PoC 2
org.apache.tomcat:tomcat (3)
30novell inc.—
3 CVECVSS 7.6
opensuse (3)
31openbsd—
3 CVE1 critCVSS 7.9
openssh (3)
32php—
3 CVECVSS 6.3
php (3)
33speedbit—
3 CVE1 critCVSS 8.1
NEWPoC 1
download accelerator plus (2) · speedbit video accelerator (1)
34system consultants—
3 CVE1 critCVSS 6.8
NEW
la cooda wiz (3)
35vmware—
3 CVECVSS 5.5
PoC 1
esx (1) · virtualcenter (1) · vmware workstation (1)
3621degrees—
2 CVECVSS 8.0
NEWPoC 2
symphony (2)
37articlefriendly—
2 CVECVSS 6.8
NEWPoC 2
article friendly (2)
38avaya—
2 CVECVSS 4.8
communication manager (2) · sip enablement services (2)
39broadcom—
2 CVE1 critCVSS 9.1
brightstor arcserve backup (1) · desktop management suite (1) · internet security suite (1)
40ca—
2 CVE1 critCVSS 8.4
arcserve backup for laptops and desktops (1) · brightstor arcserve backup (1) · host based intrusion prevention system (1)
41coppermine-gallery—
2 CVECVSS 7.5
NEWPoC 2
coppermine photo gallery (2)
42craftysyntax—
2 CVECVSS 6.3
NEWPoC 1
crafty syntax live help (2)
43deeemm—
2 CVECVSS 7.5
NEWPoC 2
dmcms (2)
44discountedscripts—
2 CVECVSS 5.5
NEWPoC 1
acg ptp (1) · quick poll script (1)
45fedoraproject—
2 CVECVSS 7.2
fedora (2)
46ingres—
2 CVECVSS 4.6
ingres (2)
47ipswitch—
2 CVE2 critCVSS 9.5
PoC 2
ws ftp home (2) · ws ftp pro (1)
48jnshosts—
2 CVE1 critCVSS 8.8
NEWPoC 2
php hosting directory (2)
49joomla—
2 CVECVSS 7.5
PoC 2
com ezstore (1) · com user (1)
50kayako—
2 CVECVSS 5.4
NEW
supportsuite (2)

#	Vendor	CVEs	Crit	KEV	Nuclei	Signals	Top products	Δ
1	microsoft	28	22	·	·	PoC 3	office (10) · internet explorer (6) · office converter pack (5)	—
2	sun	13	4	·	·	PoC 1	opensolaris (6) · solaris (6) · sunos (4)	—
3	сообщество свободного программного обеспечения	12	1	·	·	PoC 10	debian gnu/linux (12)	—
4	apple	10	4	·	·		mac os x (3) · coregraphics (2) · iphone os (1)	—
5	ibm	10	1	·	·		db2 universal database (7) · lotus quickr (1) · rational clearquest (1)	—
6	redhat	10	2	·	·		directory server (4) · enterprise linux server (3) · enterprise linux desktop (3)	—
7	yourfreeworld	10	·	·	·	NEWPoC 10	ad board script (1) · ad-exchange script (1) · banner management script (1)	—
8	linux	9	1	·	·	PoC 4	linux kernel (8) · ipsec tools racoon daemon (1)	—
9	canonical	8	·	·	·	×4.0PoC 4	ubuntu linux (8)	—
10	debian	7	·	·	·	PoC 4	debian linux (7)	—
11	drupal	7	·	·	·		drupal (6) · suggested terms module (1) · upload module (1)	—
12	apache	5	·	·	·	PoC 2	tomcat (3) · http server (1) · openoffice (1)	—
13	gentoo foundation inc.	5	1	·	·	PoC 2	gentoo linux (5)	—
14	hp	5	2	·	·		hp-ux (3) · linux imaging and printing project (2) · system administration manager (1)	—
15	python	5	·	·	·	NEWPoC 3	python (5)	—
16	red hat inc.	5	1	·	·	PoC 2	red hat enterprise linux (5)	—
17	ruby-lang	5	·	·	·	NEWPoC 5	ruby (5)	—
18	lussumo	4	·	·	·	NEW	vanilla (4)	—
19	microworld technologies	4	·	·	·	×4.0PoC 1	mailscan (4)	—
20	openfreeway	4	·	·	·	NEWPoC 1	freeway (4)	—
21	pozscripts	4	·	·	·	NEWPoC 3	classified ads (2) · greencart php shopping cart (1) · tubeguru video sharing script (1)	—
22	spacetag	4	2	·	·	NEW	lacoodast (4)	—
23	turnkeywebtools	4	·	·	·	NEWPoC 4	php live helper (3) · sunshop shopping cart (1)	—
24	adobe	3	·	·	·		presenter (2) · flash player (1)	—
25	fedora	3	·	·	·	NEW	directory server (3)	—
26	harmoni	3	·	·	·	NEWPoC 1	harmoni (3)	—
27	hotscripts	3	·	·	·	NEW×3.0PoC 1	cyboards php lite (3)	—
28	ignite realtime	3	·	·	·	NEW	openfire (3)	—
29	maven	3	·	·	·	PoC 2	org.apache.tomcat:tomcat (3)	—
30	novell inc.	3	·	·	·		opensuse (3)	—
31	openbsd	3	1	·	·		openssh (3)	—
32	php	3	·	·	·		php (3)	—
33	speedbit	3	1	·	·	NEWPoC 1	download accelerator plus (2) · speedbit video accelerator (1)	—
34	system consultants	3	1	·	·	NEW	la cooda wiz (3)	—
35	vmware	3	·	·	·	PoC 1	esx (1) · virtualcenter (1) · vmware workstation (1)	—
36	21degrees	2	·	·	·	NEWPoC 2	symphony (2)	—
37	articlefriendly	2	·	·	·	NEWPoC 2	article friendly (2)	—
38	avaya	2	·	·	·		communication manager (2) · sip enablement services (2)	—
39	broadcom	2	1	·	·		brightstor arcserve backup (1) · desktop management suite (1) · internet security suite (1)	—
40	ca	2	1	·	·		arcserve backup for laptops and desktops (1) · brightstor arcserve backup (1) · host based intrusion prevention system (1)	—
41	coppermine-gallery	2	·	·	·	NEWPoC 2	coppermine photo gallery (2)	—
42	craftysyntax	2	·	·	·	NEWPoC 1	crafty syntax live help (2)	—
43	deeemm	2	·	·	·	NEWPoC 2	dmcms (2)	—
44	discountedscripts	2	·	·	·	NEWPoC 1	acg ptp (1) · quick poll script (1)	—
45	fedoraproject	2	·	·	·		fedora (2)	—
46	ingres	2	·	·	·		ingres (2)	—
47	ipswitch	2	2	·	·	PoC 2	ws ftp home (2) · ws ftp pro (1)	—
48	jnshosts	2	1	·	·	NEWPoC 2	php hosting directory (2)	—
49	joomla	2	·	·	·	PoC 2	com ezstore (1) · com user (1)	—
50	kayako	2	·	·	·	NEW	supportsuite (2)	—