month report
September 2011
Data as of Jun 4, 2026, 13:25 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →
September 2011 closed with 389 published CVEs — +29.2% YoY . 66 criticals, google led volume, mostly via chrome. Biggest breakout: tibco at ×5.0 their 12-month median. Top weakness class — CWE-200 (140 CVE). 10 vendors cracked the top-100 for the first time.
Total CVEs
389
— MoM+29.2% YoY
Severity mix
66 / 38
critical / high
KEV added
0
0 ransomware-linked
Nuclei coverage
4.6%
18 CVEs with templates
Time to exploit
How fast the community ships detection after a CVE drops.
Days → Nuclei (median)
5273.4
n=18
Within 7 days
0.0%
Within 30 days
0.0%
Days → KEV (median)
—
n=0
Weakness × Vendor
What's spreading where in September 2011
Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.
Breakout vendors
CVE count ≥3× their own 12-period median.
First time in top-100
Vendors never in top-100 in the prior 24 periods.
- #10mhproducts5 CVE
- #13tibco5 CVE
- #14cogentdatahub4 CVE
- #15manageengine4 CVE
- #16measuresoft4 CVE
- #18phorum4 CVE
- #21fuse3 CVE
- #25netsaro3 CVE
- #27pentaho3 CVE
- #28progea3 CVE
Top vendors
Ranked by distinct CVE count this period.
- 34 CVE2 critCVSS 6.7PoC 1chrome (32) · chrome os (2) · cr-48 chromebook (2)
- 19 CVE16 critCVSS 8.9acrobat reader (13) · acrobat (12) · flash player (6)
- 16 CVE8 critCVSS 7.2sharepoint server (6) · office (6) · excel (5)
- 15 CVE8 critCVSS 7.0firefox (15) · seamonkey (12) · thunderbird (8)
- 10 CVE1 critCVSS 6.6iphone os (8) · itunes (7) · safari (7)
- 8 CVE2 critCVSS 5.3PoC 3java (2) · lotus domino (2) · openadmin tool (1)
- 6 CVECVSS 4.8×4.0PoC 3mantisbt (6)
- 5 CVE3 critCVSS 7.4PoC 2ciscoworks lan management solution (1) · identity services engine (1) · identity services engine software (1)
- 5 CVECVSS 5.8PoC 1linux kernel (5)
- 5 CVECVSS 7.5NEWPoC 5mhp downloadshop (1) · projekt shop (1) · download center (1)
- 5 CVECVSS 5.5PoC 1enterprise linux workstation (3) · enterprise linux desktop (3) · enterprise linux server (3)
- 5 CVECVSS 3.2red hat enterprise linux (5)
- 5 CVECVSS 4.8NEW×5.0spotfire analytics server (3) · spotfire server (3) · slingshot (2)
- 4 CVE1 critCVSS 6.3NEWPoC 2cogent datahub (4)
- 4 CVECVSS 5.3NEWeventlog analyzer (2) · servicedesk plus (2)
- 4 CVE4 critCVSS 10.0NEWPoC 3scadapro (4)
- 4 CVECVSS 5.6suse linux enterprise (3) · opensuse (1)
- 4 CVECVSS 5.1NEWphorum (4)
- 4 CVE1 critCVSS 5.5wireshark (4)
- 3 CVECVSS 6.2debian linux (3)
- 3 CVECVSS 3.3NEWfuse (3)
- 3 CVECVSS 4.8gentoo linux (3)
- 3 CVE1 critCVSS 6.1gtk (2) · networkmanager (1)
- 3 CVE1 critCVSS 7.5palm pre webos (2) · business service automation essentials (1)
- 3 CVECVSS 2.9NEWenterprise messenger server (3)
- 3 CVECVSS 6.5×3.0openttd (3)
- 3 CVECVSS 3.8NEWPoC 2bi server (3)
- 3 CVE3 critCVSS 10.0NEWPoC 2movicon powerhmi (3)
- 3 CVECVSS 5.4NEWPoC 2conferencemanager (3)
- 3 CVE1 critCVSS 7.9debian gnu/linux (3)
- 2 CVE2 critCVSS 10.0NEWac700 chromebook (2)
- 2 CVECVSS 4.3PoC 1http server (1) · libcloud (1)
- 2 CVECVSS 5.9NEWcyrus imap server (2)
- 2 CVECVSS 5.9NEWPoC 2eclime (2)
- 2 CVE1 critCVSS 9.4avamar (1) · ionix acm (1) · ionix asam (1)
- 2 CVECVSS 5.2NEWPoC 2com jsupport (2)
- 2 CVECVSS 5.7NEWPoC 1mail server (2)
- 2 CVECVSS 5.9NEWPoC 2ideacart (2)
- 2 CVE2 critCVSS 9.7NEWesignal (2)
- 2 CVECVSS 6.3NEWPoC 2lifesize room appliance software (2)
- 2 CVECVSS 5.9myre real estate software (2)
- 2 CVECVSS 5.3NEWPoC 2aims (2)
- 2 CVECVSS 5.0openssl (2)
- 2 CVECVSS 5.0openssl (2)
- 2 CVECVSS 4.3opera browser (2)
- 2 CVECVSS 5.0cakephp/cakephp (1) · ezyang/htmlpurifier (1)
- 2 CVE2 critCVSS 10.0NEWseries 5 chromebook (2)
- 2 CVE1 critCVSS 6.8NEWsimatic rf615r firmware (1) · simatic rf68xr firmware (1) · simatic wincc flexible runtime (1)
- 2 CVECVSS 3.1NEWPoC 1server monitor (2)
- 2 CVECVSS 4.3NEWNuclei 2hybrid (1) · trending (1)
| # | Vendor | CVEs | Crit | KEV | Nuclei | Signals | Top products | Δ | |
|---|---|---|---|---|---|---|---|---|---|
| 1 | 34 | 2 | · | · | PoC 1 | chrome (32) · chrome os (2) · cr-48 chromebook (2) | — | ||
| 2 | adobe | 19 | 16 | · | · | acrobat reader (13) · acrobat (12) · flash player (6) | — | ||
| 3 | microsoft | 16 | 8 | · | · | sharepoint server (6) · office (6) · excel (5) | — | ||
| 4 | mozilla | 15 | 8 | · | · | firefox (15) · seamonkey (12) · thunderbird (8) | — | ||
| 5 | apple | 10 | 1 | · | · | iphone os (8) · itunes (7) · safari (7) | — | ||
| 6 | ibm | 8 | 2 | · | · | PoC 3 | java (2) · lotus domino (2) · openadmin tool (1) | — | |
| 7 | mantisbt | 6 | · | · | · | ×4.0PoC 3 | mantisbt (6) | — | |
| 8 | cisco | 5 | 3 | · | · | PoC 2 | ciscoworks lan management solution (1) · identity services engine (1) · identity services engine software (1) | — | |
| 9 | linux | 5 | · | · | · | PoC 1 | linux kernel (5) | — | |
| 10 | mhproducts | 5 | · | · | · | NEWPoC 5 | mhp downloadshop (1) · projekt shop (1) · download center (1) | — | |
| 11 | redhat | 5 | · | · | · | PoC 1 | enterprise linux workstation (3) · enterprise linux desktop (3) · enterprise linux server (3) | — | |
| 12 | red hat inc. | 5 | · | · | · | red hat enterprise linux (5) | — | ||
| 13 | tibco | 5 | · | · | · | NEW×5.0 | spotfire analytics server (3) · spotfire server (3) · slingshot (2) | — | |
| 14 | cogentdatahub | 4 | 1 | · | · | NEWPoC 2 | cogent datahub (4) | — | |
| 15 | manageengine | 4 | · | · | · | NEW | eventlog analyzer (2) · servicedesk plus (2) | — | |
| 16 | measuresoft | 4 | 4 | · | · | NEWPoC 3 | scadapro (4) | — | |
| 17 | novell inc. | 4 | · | · | · | suse linux enterprise (3) · opensuse (1) | — | ||
| 18 | phorum | 4 | · | · | · | NEW | phorum (4) | — | |
| 19 | wireshark | 4 | 1 | · | · | wireshark (4) | — | ||
| 20 | debian | 3 | · | · | · | debian linux (3) | — | ||
| 21 | fuse | 3 | · | · | · | NEW | fuse (3) | — | |
| 22 | gentoo foundation inc. | 3 | · | · | · | gentoo linux (3) | — | ||
| 23 | gnome | 3 | 1 | · | · | gtk (2) · networkmanager (1) | — | ||
| 24 | hp | 3 | 1 | · | · | palm pre webos (2) · business service automation essentials (1) | — | ||
| 25 | netsaro | 3 | · | · | · | NEW | enterprise messenger server (3) | — | |
| 26 | openttd | 3 | · | · | · | ×3.0 | openttd (3) | — | |
| 27 | pentaho | 3 | · | · | · | NEWPoC 2 | bi server (3) | — | |
| 28 | progea | 3 | 3 | · | · | NEWPoC 2 | movicon powerhmi (3) | — | |
| 29 | sonexis | 3 | · | · | · | NEWPoC 2 | conferencemanager (3) | — | |
| 30 | сообщество свободного программного обеспечения | 3 | 1 | · | · | debian gnu/linux (3) | — | ||
| 31 | acer | 2 | 2 | · | · | NEW | ac700 chromebook (2) | — | |
| 32 | apache | 2 | · | · | · | PoC 1 | http server (1) · libcloud (1) | — | |
| 33 | cmu | 2 | · | · | · | NEW | cyrus imap server (2) | — | |
| 34 | eclime | 2 | · | · | · | NEWPoC 2 | eclime (2) | — | |
| 35 | emc | 2 | 1 | · | · | avamar (1) · ionix acm (1) · ionix asam (1) | — | ||
| 36 | extensiondepot | 2 | · | · | · | NEWPoC 2 | com jsupport (2) | — | |
| 37 | icewarp | 2 | · | · | · | NEWPoC 1 | mail server (2) | — | |
| 38 | ideacart | 2 | · | · | · | NEWPoC 2 | ideacart (2) | — | |
| 39 | interactivedata | 2 | 2 | · | · | NEW | esignal (2) | — | |
| 40 | lifesize | 2 | · | · | · | NEWPoC 2 | lifesize room appliance software (2) | — | |
| 41 | myrephp | 2 | · | · | · | myre real estate software (2) | — | ||
| 42 | oneorzero | 2 | · | · | · | NEWPoC 2 | aims (2) | — | |
| 43 | openssl | 2 | · | · | · | openssl (2) | — | ||
| 44 | openssl software foundation | 2 | · | · | · | openssl (2) | — | ||
| 45 | opera | 2 | · | · | · | opera browser (2) | — | ||
| 46 | packagist | 2 | · | · | · | cakephp/cakephp (1) · ezyang/htmlpurifier (1) | — | ||
| 47 | samsung | 2 | 2 | · | · | NEW | series 5 chromebook (2) | — | |
| 48 | siemens | 2 | 1 | · | · | NEW | simatic rf615r firmware (1) · simatic rf68xr firmware (1) · simatic wincc flexible runtime (1) | — | |
| 49 | tembria | 2 | · | · | · | NEWPoC 1 | server monitor (2) | — | |
| 50 | themehybrid | 2 | · | · | 2 | NEWNuclei 2 | hybrid (1) · trending (1) | — |