month report

October 2011

Data as of Jun 4, 2026, 13:25 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →

October 2011 closed with 484 published CVEs — +11.3% YoY . 60 criticals, apple led volume, mostly via itunes. Biggest breakout: apple at ×42.0 their 12-month median. Top weakness class — CWE-89 (74 CVE). 10 vendors cracked the top-100 for the first time.

Print view

Total CVEs

484

— MoM+11.3% YoY

Severity mix

60 / 184

critical / high

KEV added

0 ransomware-linked

Nuclei coverage

0.6%

3 CVEs with templates

Time to exploit

How fast the community ships detection after a CVE drops.

Days → Nuclei (median)

5264.4

n=3

Within 7 days

0.0%

Within 30 days

0.0%

Days → KEV (median)

3804

n=2

Detection gap

KEV pressure, no Nuclei coverage

October 2011 · vendors with active exploitation listed by CISA but no public detection template.

KEV 1oracle61 CVE
KEV 1microsoft24 CVE
KEV 1novell inc.6 CVE
KEV 1canonical2 CVE

Weakness × Vendor

What's spreading where in October 2011

Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.

Breakout vendors

CVE count ≥3× their own 12-period median.

42.0×apple84 CVE
11.0×novell11 CVE
5.0×cisco45 CVE
4.5×gentoo foundation inc.9 CVE
4.0×mit4 CVE
4.0×packagist4 CVE
3.0×novell inc.6 CVE
3.0×rubygems3 CVE
3.0×symantec3 CVE

First time in top-100

Vendors never in top-100 in the prior 24 periods.

#13atcom5 CVE
#15puppet5 CVE
#16puppetlabs5 CVE
#19coldgen4 CVE
#20kent-web4 CVE
#29allpcscript2 CVE
#30andreas kiefer2 CVE
#34basercms2 CVE
#37chillycms2 CVE
#38dev-team typoheads2 CVE

Top vendors

Ranked by distinct CVE count this period.

1apple—
84 CVE8 critCVSS 6.2
×42.0
itunes (29) · mac os x (26) · mac os x server (26)
2oracle—
61 CVE3 critCVSS 4.3
KEV 1
solaris (10) · fusion middleware (9) · sun products suite (6)
3cisco—
45 CVE4 critCVSS 7.6
×5.0Nuclei 1
ios (22) · ios xe (13) · catalyst 6500 (9)
4google—
32 CVECVSS 6.5
PoC 1
chrome (26) · app engine python sdk (4) · android (2)
5sun—
25 CVE7 critCVSS 6.9
jre (18) · jdk (18) · sunos (6)
6microsoft—
24 CVE14 critCVSS 7.9
KEV 1
internet explorer (8) · windows 7 (6) · windows vista (6)
7ibm—
14 CVE1 critCVSS 5.1
PoC 1
websphere mq (3) · websphere application server (3) · rational appscan (2)
8novell—
11 CVE6 critCVSS 6.9
×11.0
groupwise (7) · zenworks handheld management (2) · identity manager user application (2)
9hp—
10 CVE8 critCVSS 9.2
data protector for personal computers (7) · data protector notebook extension (7) · nonstop server software (1)
10gentoo foundation inc.—
9 CVECVSS 5.6
×4.5PoC 3
gentoo linux (9)
11pypi—
7 CVE2 critCVSS 6.6
django (5) · plone (1) · zope2 (1)
12novell inc.—
6 CVE1 critCVSS 6.7
×3.0KEV 1
opensuse (4) · suse linux enterprise server (1) · suse linux enterprise (1)
13atcom—
5 CVECVSS 6.2
NEWPoC 3
netvolution (5)
14djangoproject—
5 CVECVSS 5.5
django (5)
15puppet—
5 CVECVSS 4.8
NEWPoC 3
puppet (5) · puppet enterprise (1)
16puppetlabs—
5 CVECVSS 4.8
NEWPoC 3
puppet (5) · puppet enterprise users (1)
17quagga—
5 CVECVSS 5.5
quagga (5)
18cisco systems inc.—
4 CVECVSS 7.8
cisco ios (4)
19coldgen—
4 CVECVSS 6.7
NEWPoC 4
coldusergroup (2) · coldcalendar (1) · coldbookmarks (1)
20kent-web—
4 CVECVSS 4.3
NEW
web forum (4)
21mit—
4 CVECVSS 7.8
×4.0
kerberos 5 (4)
22packagist—
4 CVECVSS 6.8
×4.0PoC 1
dmk/webkitpdf (2) · dompdf/dompdf (1) · baserproject/basercms (1)
23сообщество свободного программного обеспечения—
4 CVECVSS 5.3
PoC 2
debian gnu/linux (4)
24ffmpeg—
3 CVECVSS 5.6
ffmpeg (3)
25joomla—
3 CVECVSS 7.5
PoC 2
com camelcitydb2 (1) · com elite experts (1) · com weblinks (1)
26linux—
3 CVECVSS 6.0
PoC 1
linux kernel (3)
27rubygems—
3 CVECVSS 6.3
×3.0PoC 3
puppet (3)
28symantec—
3 CVECVSS 6.4
×3.0
im manager (3)
29allpcscript—
2 CVECVSS 5.9
NEWPoC 2
allpc (2)
30andreas kiefer—
2 CVECVSS 5.9
NEW
ke yac (2)
31apache—
2 CVECVSS 3.5
PoC 2
http server (1) · jserv (1)
32apphp—
2 CVECVSS 5.5
PoC 1
apphp calendar (2)
33aspindir—
2 CVECVSS 7.5
PoC 2
xweblog (2)
34basercms—
2 CVECVSS 4.6
NEW
basercms (2)
35canonical—
2 CVE1 critCVSS 8.7
KEV 1
ubuntu linux (2)
36cherokee-project—
2 CVECVSS 4.5
PoC 1
cherokee (2)
37chillycms—
2 CVECVSS 5.9
NEWPoC 2
chillycms (2)
38dev-team typoheads—
2 CVECVSS 7.5
NEW
webkitpdf (2)
39dlink—
2 CVE2 critCVSS 9.0
NEWPoC 2
dcs-2121 firmware (2) · dcs-2121 (2)
40gnome—
2 CVECVSS 4.3
empathy (2)
41harmistechnology—
2 CVECVSS 7.5
PoC 2
com jedirectory (1) · com jeguestbook (1)
42hinnendahl—
2 CVECVSS 7.5
NEWPoC 2
gaestebuch (1) · kontakt formular (1)
43joachim ruhs—
2 CVECVSS 7.5
event (1) · festat (1)
44khader abbeb—
2 CVECVSS 5.9
NEWPoC 1
entrans (2)
45marco hezel—
2 CVE1 critCVSS 8.8
NEW
hm tinymarket (2)
46micronetsoft—
2 CVECVSS 7.5
NEWPoC 2
rental property website (1) · rv dealer website (1)
47nadine schwingler—
2 CVECVSS 5.9
NEW
ke questionnaire (2)
48peter proell—
2 CVECVSS 4.3
NEW
tweetbutton (1) · xing (1)
49photoindochina—
2 CVECVSS 5.9
NEWPoC 2
com restaurantguide (2)
50plone—
2 CVE2 critCVSS 9.3
NEW
plone (2) · cmfeditions (1)

#	Vendor	CVEs	Crit	KEV	Nuclei	Signals	Top products	Δ
1	apple	84	8	·	·	×42.0	itunes (29) · mac os x (26) · mac os x server (26)	—
2	oracle	61	3	1	·	KEV 1	solaris (10) · fusion middleware (9) · sun products suite (6)	—
3	cisco	45	4	·	1	×5.0Nuclei 1	ios (22) · ios xe (13) · catalyst 6500 (9)	—
4	google	32	·	·	·	PoC 1	chrome (26) · app engine python sdk (4) · android (2)	—
5	sun	25	7	·	·		jre (18) · jdk (18) · sunos (6)	—
6	microsoft	24	14	1	·	KEV 1	internet explorer (8) · windows 7 (6) · windows vista (6)	—
7	ibm	14	1	·	·	PoC 1	websphere mq (3) · websphere application server (3) · rational appscan (2)	—
8	novell	11	6	·	·	×11.0	groupwise (7) · zenworks handheld management (2) · identity manager user application (2)	—
9	hp	10	8	·	·		data protector for personal computers (7) · data protector notebook extension (7) · nonstop server software (1)	—
10	gentoo foundation inc.	9	·	·	·	×4.5PoC 3	gentoo linux (9)	—
11	pypi	7	2	·	·		django (5) · plone (1) · zope2 (1)	—
12	novell inc.	6	1	1	·	×3.0KEV 1	opensuse (4) · suse linux enterprise server (1) · suse linux enterprise (1)	—
13	atcom	5	·	·	·	NEWPoC 3	netvolution (5)	—
14	djangoproject	5	·	·	·		django (5)	—
15	puppet	5	·	·	·	NEWPoC 3	puppet (5) · puppet enterprise (1)	—
16	puppetlabs	5	·	·	·	NEWPoC 3	puppet (5) · puppet enterprise users (1)	—
17	quagga	5	·	·	·		quagga (5)	—
18	cisco systems inc.	4	·	·	·		cisco ios (4)	—
19	coldgen	4	·	·	·	NEWPoC 4	coldusergroup (2) · coldcalendar (1) · coldbookmarks (1)	—
20	kent-web	4	·	·	·	NEW	web forum (4)	—
21	mit	4	·	·	·	×4.0	kerberos 5 (4)	—
22	packagist	4	·	·	·	×4.0PoC 1	dmk/webkitpdf (2) · dompdf/dompdf (1) · baserproject/basercms (1)	—
23	сообщество свободного программного обеспечения	4	·	·	·	PoC 2	debian gnu/linux (4)	—
24	ffmpeg	3	·	·	·		ffmpeg (3)	—
25	joomla	3	·	·	·	PoC 2	com camelcitydb2 (1) · com elite experts (1) · com weblinks (1)	—
26	linux	3	·	·	·	PoC 1	linux kernel (3)	—
27	rubygems	3	·	·	·	×3.0PoC 3	puppet (3)	—
28	symantec	3	·	·	·	×3.0	im manager (3)	—
29	allpcscript	2	·	·	·	NEWPoC 2	allpc (2)	—
30	andreas kiefer	2	·	·	·	NEW	ke yac (2)	—
31	apache	2	·	·	·	PoC 2	http server (1) · jserv (1)	—
32	apphp	2	·	·	·	PoC 1	apphp calendar (2)	—
33	aspindir	2	·	·	·	PoC 2	xweblog (2)	—
34	basercms	2	·	·	·	NEW	basercms (2)	—
35	canonical	2	1	1	·	KEV 1	ubuntu linux (2)	—
36	cherokee-project	2	·	·	·	PoC 1	cherokee (2)	—
37	chillycms	2	·	·	·	NEWPoC 2	chillycms (2)	—
38	dev-team typoheads	2	·	·	·	NEW	webkitpdf (2)	—
39	dlink	2	2	·	·	NEWPoC 2	dcs-2121 firmware (2) · dcs-2121 (2)	—
40	gnome	2	·	·	·		empathy (2)	—
41	harmistechnology	2	·	·	·	PoC 2	com jedirectory (1) · com jeguestbook (1)	—
42	hinnendahl	2	·	·	·	NEWPoC 2	gaestebuch (1) · kontakt formular (1)	—
43	joachim ruhs	2	·	·	·		event (1) · festat (1)	—
44	khader abbeb	2	·	·	·	NEWPoC 1	entrans (2)	—
45	marco hezel	2	1	·	·	NEW	hm tinymarket (2)	—
46	micronetsoft	2	·	·	·	NEWPoC 2	rental property website (1) · rv dealer website (1)	—
47	nadine schwingler	2	·	·	·	NEW	ke questionnaire (2)	—
48	peter proell	2	·	·	·	NEW	tweetbutton (1) · xing (1)	—
49	photoindochina	2	·	·	·	NEWPoC 2	com restaurantguide (2)	—
50	plone	2	2	·	·	NEW	plone (2) · cmfeditions (1)	—