month report

March 2011

Data as of Jun 4, 2026, 13:25 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →

March 2011 closed with 356 published CVEs. 26 criticals, apple led volume, mostly via itunes. Biggest breakout: apple at ×20.0 their 12-month median. Top weakness class — CWE-119 (80 CVE). 10 vendors cracked the top-100 for the first time.

Print view

Total CVEs

356

— MoM— YoY

Severity mix

26 / 112

critical / high

KEV added

0 ransomware-linked

Nuclei coverage

2.0%

7 CVEs with templates

Time to exploit

How fast the community ships detection after a CVE drops.

Days → Nuclei (median)

5471.1

n=7

Within 7 days

0.0%

Within 30 days

0.0%

Days → KEV (median)

4103

n=1

Detection gap

KEV pressure, no Nuclei coverage

March 2011 · vendors with active exploitation listed by CISA but no public detection template.

KEV 1google52 CVE

Weakness × Vendor

What's spreading where in March 2011

Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.

Breakout vendors

CVE count ≥3× their own 12-period median.

20.0×apple100 CVE
10.7×red hat inc.16 CVE
8.0×canonical ltd.8 CVE
5.0×novell inc.5 CVE
4.7×google52 CVE
3.0×digium3 CVE
3.0×emc3 CVE

First time in top-100

Vendors never in top-100 in the prior 24 periods.

#4otrs25 CVE
#11php group8 CVE
#13gentoo6 CVE
#23gplhost4 CVE
#25t1lib4 CVE
#32openldap3 CVE
#33ruby-lang3 CVE
#35alcatel-lucent2 CVE
#36balbir singh2 CVE
#37blogcms2 CVE

Top vendors

Ranked by distinct CVE count this period.

1apple—
100 CVE4 critCVSS 6.8
×20.0PoC 5
itunes (62) · webkit (56) · iphone os (23)
2google—
52 CVE1 critCVSS 6.9
×4.7KEV 1PoC 15
chrome (50) · chrome os (1) · picasa (1)
3ibm—
30 CVE2 critCVSS 5.2
PoC 1
websphere application server (16) · lotus quickr (9) · lotus domino (2)
4otrs—
25 CVECVSS 4.7
NEWPoC 4
otrs (25)
5сообщество свободного программного обеспечения—
21 CVE1 critCVSS 5.3
Nuclei 1PoC 6
debian gnu/linux (21)
6red hat inc.—
16 CVECVSS 5.2
×10.7PoC 5
red hat enterprise linux (16)
7php—
15 CVECVSS 5.0
PoC 6
php (13) · pear (2)
8mozilla—
12 CVE8 critCVSS 8.7
firefox (12) · seamonkey (10) · thunderbird (4)
9gentoo foundation inc.—
9 CVE1 critCVSS 5.6
PoC 1
gentoo linux (9)
10canonical ltd.—
8 CVECVSS 4.9
×8.0PoC 5
ubuntu (8)
11php group—
8 CVECVSS 4.9
NEWPoC 5
php (8)
12wireshark—
8 CVE1 critCVSS 5.6
PoC 3
wireshark (8)
13gentoo—
6 CVECVSS 4.9
NEW
logrotate (6)
14hp—
6 CVE1 critCVSS 5.0
client automation enterprise (1) · diagnostics (1) · discovery\&dependency mapping inventory (1)
15microsoft—
6 CVE3 critCVSS 8.2
windows vista (3) · internet explorer (3) · windows 7 (3)
16canonical—
5 CVECVSS 5.7
Nuclei 1PoC 3
ubuntu linux (5)
17debian—
5 CVECVSS 6.2
Nuclei 1PoC 2
debian linux (5) · tex-common (1)
18linux—
5 CVECVSS 5.0
PoC 2
linux kernel (5)
19novell inc.—
5 CVECVSS 5.7
×5.0PoC 4
opensuse leap (4) · suse linux enterprise (1)
20foolabs—
4 CVECVSS 4.9
xpdf (4)
21freebsd—
4 CVECVSS 3.0
PoC 1
freebsd (4)
22glyphandcog—
4 CVECVSS 4.9
xpdfreader (4)
23gplhost—
4 CVECVSS 5.4
NEW
domain technologie control (4)
24redhat—
4 CVECVSS 4.2
PoC 1
enterprise linux desktop (2) · enterprise linux workstation (2) · enterprise linux server (2)
25t1lib—
4 CVECVSS 4.9
NEW
t1lib (4)
26apache—
3 CVECVSS 5.3
tomcat (2) · subversion (1)
27digium—
3 CVECVSS 6.1
×3.0
asterisk (3) · asterisknow (1) · s800i (1)
28emc—
3 CVECVSS 6.4
×3.0
avamar (2) · data protection advisor collector (1)
29gnu—
3 CVECVSS 5.6
PoC 1
glibc (2) · gnu patch (1)
30lightneasy—
3 CVECVSS 5.7
lightneasy (3)
31novell—
3 CVE2 critCVSS 8.6
PoC 1
netware (1) · opensuse factory (1) · vibe onprem (1)
32openldap—
3 CVECVSS 5.5
NEWPoC 1
openldap (3)
33ruby-lang—
3 CVECVSS 6.0
NEW
ruby (3)
34symantec—
3 CVECVSS 6.3
PoC 2
liveupdate administrator (2) · altiris notification server (1) · altiris deployment solution (1)
35alcatel-lucent—
2 CVECVSS 4.5
NEW
omnipcx (1) · omnivista (1)
36balbir singh—
2 CVECVSS 4.7
NEW
libcgroup (2)
37blogcms—
2 CVECVSS 5.5
NEWPoC 2
blog\ (2)
38e107—
2 CVECVSS 4.3
e107 (2)
39fedoraproject—
2 CVECVSS 4.5
Nuclei 1PoC 2
fedora (2)
40gnome—
2 CVECVSS 6.8
gdm (1) · pango (1)
41mahara—
2 CVECVSS 5.0
mahara (2)
42matteoiammarrone—
2 CVECVSS 5.9
PoC 2
s-cms (2)
43maven—
2 CVECVSS 5.8
org.apache.tomcat:tomcat (2)
44netbsd—
2 CVECVSS 4.0
PoC 1
netbsd (2)
45openbsd—
2 CVECVSS 4.0
PoC 1
openbsd (2) · openssh (1)
46opensuse—
2 CVECVSS 5.9
KEV 1Nuclei 1PoC 1
opensuse (2)
47pypi—
2 CVECVSS 5.5
loggerhead (1) · pywebdav (1)
48quagga—
2 CVECVSS 5.0
NEW
quagga (2)
49rim—
2 CVE1 critCVSS 7.5
blackberry torch 9800 (2) · blackberry torch 9800 firmware (2)
50samba—
2 CVECVSS 5.0
rsync (1) · samba (1)

#	Vendor	CVEs	Crit	KEV	Nuclei	Signals	Top products	Δ
1	apple	100	4	·	·	×20.0PoC 5	itunes (62) · webkit (56) · iphone os (23)	—
2	google	52	1	1	·	×4.7KEV 1PoC 15	chrome (50) · chrome os (1) · picasa (1)	—
3	ibm	30	2	·	·	PoC 1	websphere application server (16) · lotus quickr (9) · lotus domino (2)	—
4	otrs	25	·	·	·	NEWPoC 4	otrs (25)	—
5	сообщество свободного программного обеспечения	21	1	·	1	Nuclei 1PoC 6	debian gnu/linux (21)	—
6	red hat inc.	16	·	·	·	×10.7PoC 5	red hat enterprise linux (16)	—
7	php	15	·	·	·	PoC 6	php (13) · pear (2)	—
8	mozilla	12	8	·	·		firefox (12) · seamonkey (10) · thunderbird (4)	—
9	gentoo foundation inc.	9	1	·	·	PoC 1	gentoo linux (9)	—
10	canonical ltd.	8	·	·	·	×8.0PoC 5	ubuntu (8)	—
11	php group	8	·	·	·	NEWPoC 5	php (8)	—
12	wireshark	8	1	·	·	PoC 3	wireshark (8)	—
13	gentoo	6	·	·	·	NEW	logrotate (6)	—
14	hp	6	1	·	·		client automation enterprise (1) · diagnostics (1) · discovery\&dependency mapping inventory (1)	—
15	microsoft	6	3	·	·		windows vista (3) · internet explorer (3) · windows 7 (3)	—
16	canonical	5	·	·	1	Nuclei 1PoC 3	ubuntu linux (5)	—
17	debian	5	·	·	1	Nuclei 1PoC 2	debian linux (5) · tex-common (1)	—
18	linux	5	·	·	·	PoC 2	linux kernel (5)	—
19	novell inc.	5	·	·	·	×5.0PoC 4	opensuse leap (4) · suse linux enterprise (1)	—
20	foolabs	4	·	·	·		xpdf (4)	—
21	freebsd	4	·	·	·	PoC 1	freebsd (4)	—
22	glyphandcog	4	·	·	·		xpdfreader (4)	—
23	gplhost	4	·	·	·	NEW	domain technologie control (4)	—
24	redhat	4	·	·	·	PoC 1	enterprise linux desktop (2) · enterprise linux workstation (2) · enterprise linux server (2)	—
25	t1lib	4	·	·	·	NEW	t1lib (4)	—
26	apache	3	·	·	·		tomcat (2) · subversion (1)	—
27	digium	3	·	·	·	×3.0	asterisk (3) · asterisknow (1) · s800i (1)	—
28	emc	3	·	·	·	×3.0	avamar (2) · data protection advisor collector (1)	—
29	gnu	3	·	·	·	PoC 1	glibc (2) · gnu patch (1)	—
30	lightneasy	3	·	·	·		lightneasy (3)	—
31	novell	3	2	·	·	PoC 1	netware (1) · opensuse factory (1) · vibe onprem (1)	—
32	openldap	3	·	·	·	NEWPoC 1	openldap (3)	—
33	ruby-lang	3	·	·	·	NEW	ruby (3)	—
34	symantec	3	·	·	·	PoC 2	liveupdate administrator (2) · altiris notification server (1) · altiris deployment solution (1)	—
35	alcatel-lucent	2	·	·	·	NEW	omnipcx (1) · omnivista (1)	—
36	balbir singh	2	·	·	·	NEW	libcgroup (2)	—
37	blogcms	2	·	·	·	NEWPoC 2	blog\ (2)	—
38	e107	2	·	·	·		e107 (2)	—
39	fedoraproject	2	·	·	1	Nuclei 1PoC 2	fedora (2)	—
40	gnome	2	·	·	·		gdm (1) · pango (1)	—
41	mahara	2	·	·	·		mahara (2)	—
42	matteoiammarrone	2	·	·	·	PoC 2	s-cms (2)	—
43	maven	2	·	·	·		org.apache.tomcat:tomcat (2)	—
44	netbsd	2	·	·	·	PoC 1	netbsd (2)	—
45	openbsd	2	·	·	·	PoC 1	openbsd (2) · openssh (1)	—
46	opensuse	2	·	1	1	KEV 1Nuclei 1PoC 1	opensuse (2)	—
47	pypi	2	·	·	·		loggerhead (1) · pywebdav (1)	—
48	quagga	2	·	·	·	NEW	quagga (2)	—
49	rim	2	1	·	·		blackberry torch 9800 (2) · blackberry torch 9800 firmware (2)	—
50	samba	2	·	·	·		rsync (1) · samba (1)	—