month report
August 2009
Data as of Jun 4, 2026, 13:25 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →
August 2009 closed with 531 published CVEs. 80 criticals, sun led volume, mostly via java se. Top weakness class — CWE-79 (72 CVE). 10 vendors cracked the top-100 for the first time.
Total CVEs
531
— MoM— YoY
Severity mix
80 / 169
critical / high
KEV added
0
0 ransomware-linked
Nuclei coverage
1.5%
8 CVEs with templates
Time to exploit
How fast the community ships detection after a CVE drops.
Days → Nuclei (median)
6044.0
n=8
Within 7 days
0.0%
Within 30 days
0.0%
Days → KEV (median)
4601
n=1
Detection gap
KEV pressure, no Nuclei coverage
August 2009 · vendors with active exploitation listed by CISA but no public detection template.
- KEV 1cisco12 CVE
Weakness × Vendor
What's spreading where in August 2009
Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.
79XSS89SQL Injection264CWE-264119Memory Buffer Bounds20Improper Input Validation287Improper Authentication94Code Injection399CWE-39922Path Traversal310CWE-310sun14112microsoft25333apple1151ibm13131mozilla32213google112111linux121cisco1112adobe511phpscriptsnow44сообщество свободного программного обеспечения11111canonical
First time in top-100
Vendors never in top-100 in the prior 24 periods.
- #10phpscriptsnow8 CVE
- #14ajsquare6 CVE
- #16kyoceramita5 CVE
- #19collabtive4 CVE
- #20dd-wrt4 CVE
- #22phpstore4 CVE
- #23pligg4 CVE
- #25turnkeyforms4 CVE
- #26webidsupport4 CVE
- #28zeeways4 CVE
Top vendors
Ranked by distinct CVE count this period.
- 35 CVE8 critCVSS 6.5PoC 1java se (14) · jdk (7) · jre (7)
- 24 CVE11 critCVSS 8.1PoC 6windows xp (10) · windows vista (10) · windows server 2008 (8)
- 20 CVE5 critCVSS 6.9mac os x (14) · mac os x server (13) · safari (6)
- 18 CVE3 critCVSS 6.0PoC 1websphere application server (8) · db2 (3) · websphere commerce (2)
- 14 CVE4 critCVSS 5.6PoC 1firefox (12) · seamonkey (4) · mozilla (2)
- 13 CVE3 critCVSS 6.1PoC 9chrome (12) · android (1)
- 13 CVECVSS 6.3PoC 6linux kernel (13) · kernel (3)
- 12 CVECVSS 6.8KEV 1unified communications manager (5) · ios xr (3) · aironet ap1200 (2)
- 8 CVECVSS 4.3Nuclei 1PoC 2coldfusion (5) · jrun (2) · flex sdk (1)
- 8 CVECVSS 5.9NEWPoC 1hangman (2) · president bios (2) · riddles (2)
- 8 CVE2 critCVSS 6.8PoC 2debian gnu/linux (8) · libxml2 (1)
- 7 CVECVSS 5.8PoC 4ubuntu linux (7)
- 7 CVE1 critCVSS 6.0buildbot (2) · zodb3 (2) · roundup (1)
- 6 CVECVSS 7.1NEWPoC 4free polling script (3) · aj matrix dna (1) · aj article (1)
- 5 CVECVSS 6.2PoC 2fedora (5)
- 5 CVE2 critCVSS 7.7NEWPoC 2scanner file utility (5)
- 5 CVE1 critCVSS 6.2puremessage for microsoft exchange (3) · anti-virus (2) · anti-virus7.6.3 (2)
- 5 CVECVSS 6.7PoC 3linux enterprise server (4) · linux enterprise desktop (2) · linux enterprise real time (1)
- 4 CVECVSS 6.3NEWPoC 4collabtive (4)
- 4 CVECVSS 7.3NEWPoC 4dd-wrt (4)
- 4 CVECVSS 5.9PoC 3debian linux (4)
- 4 CVECVSS 6.5NEWPoC 4auto classifieds (1) · complete classifieds (1) · phpcareers (1)
- 4 CVECVSS 6.8NEWPoC 3pligg cms (4)
- 4 CVECVSS 7.3PoC 2enterprise linux workstation (3) · enterprise linux desktop (3) · enterprise linux server (3)
- 4 CVECVSS 7.5NEWPoC 4web hosting directory (3) · text link sales (1)
- 4 CVECVSS 6.3NEWPoC 4webid (4)
- 4 CVE1 critCVSS 7.0Nuclei 4PoC 1wordpress (4)
- 4 CVECVSS 6.2NEWPoC 4zeeproperty (2) · shaadiclone (1) · zeejobsite (1)
- 3 CVECVSS 6.2PoC 32532gigs (3)
- 3 CVECVSS 5.7NEWphone system (3)
- 3 CVE1 critCVSS 7.3PoC 3portable runtime (1) · apr-util (1) · xerces2 java (1)
- 3 CVE1 critCVSS 7.8advantage data transport (1) · host-based intrusion prevention system (1) · internet security suite (1)
- 3 CVECVSS 6.3NEWdotnetnuke (3)
- 3 CVECVSS 6.4NEWPoC 2ezphotogallery (3)
- 3 CVECVSS 5.4NEWPoC 3bandsite cms (3)
- 3 CVECVSS 7.2NEWservices (3)
- 3 CVECVSS 6.4NEWPoC 3natterchat (3)
- 3 CVECVSS 5.8PoC 1opensuse (3)
- 3 CVECVSS 6.0PoC 2php (3)
- 3 CVECVSS 5.6NEWPoC 1phpadultsite cms (3)
- 3 CVE1 critCVSS 6.4NEWPoC 1pidgin (3)
- 3 CVECVSS 6.1NEWPoC 2pre classified listings (2) · pre real estate listings (1)
- 3 CVECVSS 6.2NEWPoC 3k-rate (3)
- 3 CVE1 critCVSS 7.8PoC 1red hat enterprise linux (3)
- 3 CVECVSS 6.5NEWPoC 3auto classifieds (1) · realtor classifieds system (1) · recipes listing portal (1)
- 3 CVE2 critCVSS 8.9NEWPoC 2gigaset c450 ip (1) · gigaset c475 ip (1) · gigaset wlan camera (1)
- 3 CVECVSS 5.4NEWPoC 1affinium campaign (3)
- 3 CVECVSS 6.7PoC 1esx (2) · esxi (2) · vcenter server (2)
- 3 CVECVSS 4.3NEWPoC 1xzero community classifieds (3)
- 2 CVECVSS 7.5NEWPoC 2aj auction (2)
| # | Vendor | CVEs | Crit | KEV | Nuclei | Signals | Top products | Δ | |
|---|---|---|---|---|---|---|---|---|---|
| 1 | sun | 35 | 8 | · | · | PoC 1 | java se (14) · jdk (7) · jre (7) | — | |
| 2 | microsoft | 24 | 11 | · | · | PoC 6 | windows xp (10) · windows vista (10) · windows server 2008 (8) | — | |
| 3 | apple | 20 | 5 | · | · | mac os x (14) · mac os x server (13) · safari (6) | — | ||
| 4 | ibm | 18 | 3 | · | · | PoC 1 | websphere application server (8) · db2 (3) · websphere commerce (2) | — | |
| 5 | mozilla | 14 | 4 | · | · | PoC 1 | firefox (12) · seamonkey (4) · mozilla (2) | — | |
| 6 | 13 | 3 | · | · | PoC 9 | chrome (12) · android (1) | — | ||
| 7 | linux | 13 | · | · | · | PoC 6 | linux kernel (13) · kernel (3) | — | |
| 8 | cisco | 12 | · | 1 | · | KEV 1 | unified communications manager (5) · ios xr (3) · aironet ap1200 (2) | — | |
| 9 | adobe | 8 | · | · | 1 | Nuclei 1PoC 2 | coldfusion (5) · jrun (2) · flex sdk (1) | — | |
| 10 | phpscriptsnow | 8 | · | · | · | NEWPoC 1 | hangman (2) · president bios (2) · riddles (2) | — | |
| 11 | сообщество свободного программного обеспечения | 8 | 2 | · | · | PoC 2 | debian gnu/linux (8) · libxml2 (1) | — | |
| 12 | canonical | 7 | · | · | · | PoC 4 | ubuntu linux (7) | — | |
| 13 | pypi | 7 | 1 | · | · | buildbot (2) · zodb3 (2) · roundup (1) | — | ||
| 14 | ajsquare | 6 | · | · | · | NEWPoC 4 | free polling script (3) · aj matrix dna (1) · aj article (1) | — | |
| 15 | fedoraproject | 5 | · | · | · | PoC 2 | fedora (5) | — | |
| 16 | kyoceramita | 5 | 2 | · | · | NEWPoC 2 | scanner file utility (5) | — | |
| 17 | sophos | 5 | 1 | · | · | puremessage for microsoft exchange (3) · anti-virus (2) · anti-virus7.6.3 (2) | — | ||
| 18 | suse | 5 | · | · | · | PoC 3 | linux enterprise server (4) · linux enterprise desktop (2) · linux enterprise real time (1) | — | |
| 19 | collabtive | 4 | · | · | · | NEWPoC 4 | collabtive (4) | — | |
| 20 | dd-wrt | 4 | · | · | · | NEWPoC 4 | dd-wrt (4) | — | |
| 21 | debian | 4 | · | · | · | PoC 3 | debian linux (4) | — | |
| 22 | phpstore | 4 | · | · | · | NEWPoC 4 | auto classifieds (1) · complete classifieds (1) · phpcareers (1) | — | |
| 23 | pligg | 4 | · | · | · | NEWPoC 3 | pligg cms (4) | — | |
| 24 | redhat | 4 | · | · | · | PoC 2 | enterprise linux workstation (3) · enterprise linux desktop (3) · enterprise linux server (3) | — | |
| 25 | turnkeyforms | 4 | · | · | · | NEWPoC 4 | web hosting directory (3) · text link sales (1) | — | |
| 26 | webidsupport | 4 | · | · | · | NEWPoC 4 | webid (4) | — | |
| 27 | wordpress | 4 | 1 | · | 4 | Nuclei 4PoC 1 | wordpress (4) | — | |
| 28 | zeeways | 4 | · | · | · | NEWPoC 4 | zeeproperty (2) · shaadiclone (1) · zeejobsite (1) | — | |
| 29 | 2532gigs | 3 | · | · | · | PoC 3 | 2532gigs (3) | — | |
| 30 | 3cx | 3 | · | · | · | NEW | phone system (3) | — | |
| 31 | apache | 3 | 1 | · | · | PoC 3 | portable runtime (1) · apr-util (1) · xerces2 java (1) | — | |
| 32 | ca | 3 | 1 | · | · | advantage data transport (1) · host-based intrusion prevention system (1) · internet security suite (1) | — | ||
| 33 | dnnsoftware | 3 | · | · | · | NEW | dotnetnuke (3) | — | |
| 34 | ezphotogallery | 3 | · | · | · | NEWPoC 2 | ezphotogallery (3) | — | |
| 35 | grayscalecms | 3 | · | · | · | NEWPoC 3 | bandsite cms (3) | — | |
| 36 | marc ingram | 3 | · | · | · | NEW | services (3) | — | |
| 37 | natterchat | 3 | · | · | · | NEWPoC 3 | natterchat (3) | — | |
| 38 | opensuse | 3 | · | · | · | PoC 1 | opensuse (3) | — | |
| 39 | php | 3 | · | · | · | PoC 2 | php (3) | — | |
| 40 | phpadultsite | 3 | · | · | · | NEWPoC 1 | phpadultsite cms (3) | — | |
| 41 | pidgin | 3 | 1 | · | · | NEWPoC 1 | pidgin (3) | — | |
| 42 | preprojects | 3 | · | · | · | NEWPoC 2 | pre classified listings (2) · pre real estate listings (1) | — | |
| 43 | qsoft-inc | 3 | · | · | · | NEWPoC 3 | k-rate (3) | — | |
| 44 | red hat inc. | 3 | 1 | · | · | PoC 1 | red hat enterprise linux (3) | — | |
| 45 | scriptsfeed | 3 | · | · | · | NEWPoC 3 | auto classifieds (1) · realtor classifieds system (1) · recipes listing portal (1) | — | |
| 46 | siemens | 3 | 2 | · | · | NEWPoC 2 | gigaset c450 ip (1) · gigaset c475 ip (1) · gigaset wlan camera (1) | — | |
| 47 | unica | 3 | · | · | · | NEWPoC 1 | affinium campaign (3) | — | |
| 48 | vmware | 3 | · | · | · | PoC 1 | esx (2) · esxi (2) · vcenter server (2) | — | |
| 49 | xzeroscripts | 3 | · | · | · | NEWPoC 1 | xzero community classifieds (3) | — | |
| 50 | aj square | 2 | · | · | · | NEWPoC 2 | aj auction (2) | — |