month report

December 2011

Data as of Jun 4, 2026, 13:25 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →

December 2011 closed with 347 published CVEs. 77 criticals, parallels led volume, mostly via parallels plesk panel. Biggest breakout: microsoft at ×3.0 their 12-month median. Top weakness class — CWE-79 (55 CVE). 10 vendors cracked the top-100 for the first time.

Print view

Total CVEs

347

— MoM— YoY

Severity mix

77 / 71

critical / high

KEV added

0 ransomware-linked

Nuclei coverage

1.4%

5 CVEs with templates

Time to exploit

How fast the community ships detection after a CVE drops.

Days → Nuclei (median)

5196.9

n=5

Within 7 days

0.0%

Within 30 days

0.0%

Days → KEV (median)

3876

n=2

Detection gap

KEV pressure, no Nuclei coverage

December 2011 · vendors with active exploitation listed by CISA but no public detection template.

KEV 1adobe7 CVE

Weakness × Vendor

What's spreading where in December 2011

Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.

Breakout vendors

CVE count ≥3× their own 12-period median.

3.0×microsoft27 CVE
3.0×packagist3 CVE
3.0×pidgin3 CVE

First time in top-100

Vendors never in top-100 in the prior 24 periods.

#1parallels53 CVE
#8schneider-electric7 CVE
#11oneclickorgs6 CVE
#13wuzly5 CVE
#223ssoftware3 CVE
#237t3 CVE
#24autosectools3 CVE
#25.bbsoftware3 CVE
#29homeseer3 CVE
#40barter-sites2 CVE

Top vendors

Ranked by distinct CVE count this period.

1parallels—
53 CVE17 critCVSS 6.6
NEWPoC 1
parallels plesk panel (37) · parallels plesk small business panel (16)
2microsoft—
27 CVE14 critCVSS 8.1
×3.0PoC 3
windows xp (11) · windows server 2003 (10) · windows 7 (10)
3google—
22 CVE2 critCVSS 6.2
PoC 1
chrome (19) · chrome os (1) · cr-48 chromebook (1)
4mozilla—
11 CVE1 critCVSS 6.3
PoC 2
firefox (11) · thunderbird (10) · seamonkey (9)
5hp—
10 CVE4 critCVSS 9.6
PoC 1
managed printing administration (4) · database archiving software (3) · laserjet 4240 (1)
6opera—
10 CVE2 critCVSS 6.1
PoC 1
opera browser (10)
7adobe—
7 CVE4 critCVSS 7.9
KEV 1PoC 1
acrobat (2) · acrobat reader (2) · coldfusion (2)
8schneider-electric—
7 CVE4 critCVSS 8.7
NEWPoC 1
vijeo historian (4) · citecthistorian (4) · citectscada reports (4)
9tor—
7 CVECVSS 5.0
tor (7)
10debian—
6 CVE1 critCVSS 6.4
PoC 2
debian linux (6)
11oneclickorgs—
6 CVECVSS 5.3
NEW
one click orgs (6)
12apple—
5 CVECVSS 5.6
PoC 1
safari (5) · itunes (3) · iphone os (3)
13wuzly—
5 CVECVSS 6.6
NEW
wuzly (5)
14fedoraproject—
4 CVE1 critCVSS 7.6
PoC 1
fedora (4)
15maven—
4 CVECVSS 5.2
PoC 2
org.apache.geronimo:geronimo (1) · org.eclipse.jetty:jetty-server (1) · org.jenkins-ci.main:jenkins-core (1)
16novell—
4 CVE1 critCVSS 6.3
groupwise messenger (1) · messenger (1) · sentinel log manager (1)
17oracle—
4 CVECVSS 6.0
PoC 1
outside in technology (2) · glassfish server (1) · sun storage common array manager (1)
18pypi—
4 CVECVSS 4.8
celery (1) · nova (1) · plone (1)
19redhat—
4 CVECVSS 5.3
enterprise linux desktop (2) · enterprise linux server (1) · enterprise linux server eus (1)
20red hat inc.—
4 CVE1 critCVSS 6.3
PoC 2
red hat enterprise linux (4)
21suse—
4 CVE1 critCVSS 7.6
PoC 1
linux enterprise desktop (3) · linux enterprise server (3) · linux enterprise software development kit (3)
223ssoftware—
3 CVE1 critCVSS 7.5
NEWPoC 3
codesys (3)
237t—
3 CVECVSS 5.6
NEW
igss (3)
24autosectools—
3 CVECVSS 6.2
NEW
v-cms (3)
25.bbsoftware—
3 CVE3 critCVSS 9.3
NEW
bb flashback (3)
26canonical—
3 CVECVSS 6.2
ubuntu linux (3)
27gentoo foundation inc.—
3 CVECVSS 5.4
gentoo linux (3)
28gnu—
3 CVE1 critCVSS 6.2
PoC 1
inetutils (1) · gnutls (1) · mailman (1)
29homeseer—
3 CVECVSS 6.2
NEW
homeseer hs2 (3)
30ibm—
3 CVECVSS 6.5
lotus domino (1) · rational asset manager (1) · tivoli netcool\/reporter (1)
31novell inc.—
3 CVE1 critCVSS 7.3
PoC 1
opensuse (1) · opensuse leap (1) · suse linux enterprise (1)
32packagist—
3 CVECVSS 4.5
×3.0
phpmyadmin/phpmyadmin (2) · moodle/moodle (1)
33phpmyadmin—
3 CVECVSS 4.3
phpmyadmin (3)
34pidgin—
3 CVECVSS 5.0
×3.0
pidgin (3)
35smartertools—
3 CVE1 critCVSS 6.4
smarterstats (3)
36vtiger—
3 CVECVSS 4.2
PoC 1
vtiger crm (3)
37zabbix—
3 CVECVSS 5.4
PoC 1
zabbix (3)
38сообщество свободного программного обеспечения—
3 CVE1 critCVSS 6.4
PoC 2
debian gnu/linux (3)
39apache—
2 CVECVSS 6.4
PoC 1
geronimo (1) · http server (1)
40barter-sites—
2 CVECVSS 5.5
NEWPoC 2
com listing (2)
41bst—
2 CVECVSS 5.9
NEWPoC 2
bestshoppro (2)
42digium—
2 CVECVSS 4.7
asterisk (2)
43dolibarr—
2 CVECVSS 5.4
NEWPoC 2
dolibarr erp\/crm (2)
44emc—
2 CVECVSS 6.8
rsa adaptive authentication on-premise (2)
45indusoft—
2 CVE2 critCVSS 9.7
web studio (2)
46infoproject—
2 CVECVSS 5.9
NEWPoC 2
biznis heroj (2)
47jasper project—
2 CVECVSS 6.8
NEW
jasper (2)
48joomlaextensions—
2 CVECVSS 5.9
NEWPoC 2
com hmcommunity (2)
49mini-stream—
2 CVE2 critCVSS 9.3
NEWPoC 2
ripper (1) · rm-mp3 converter (1)
50mit—
2 CVE1 critCVSS 8.4
PoC 1
krb5-appl (1) · mit kerberos (1)

#	Vendor	CVEs	Crit	KEV	Nuclei	Signals	Top products	Δ
1	parallels	53	17	·	·	NEWPoC 1	parallels plesk panel (37) · parallels plesk small business panel (16)	—
2	microsoft	27	14	·	·	×3.0PoC 3	windows xp (11) · windows server 2003 (10) · windows 7 (10)	—
3	google	22	2	·	·	PoC 1	chrome (19) · chrome os (1) · cr-48 chromebook (1)	—
4	mozilla	11	1	·	·	PoC 2	firefox (11) · thunderbird (10) · seamonkey (9)	—
5	hp	10	4	·	·	PoC 1	managed printing administration (4) · database archiving software (3) · laserjet 4240 (1)	—
6	opera	10	2	·	·	PoC 1	opera browser (10)	—
7	adobe	7	4	1	·	KEV 1PoC 1	acrobat (2) · acrobat reader (2) · coldfusion (2)	—
8	schneider-electric	7	4	·	·	NEWPoC 1	vijeo historian (4) · citecthistorian (4) · citectscada reports (4)	—
9	tor	7	·	·	·		tor (7)	—
10	debian	6	1	·	·	PoC 2	debian linux (6)	—
11	oneclickorgs	6	·	·	·	NEW	one click orgs (6)	—
12	apple	5	·	·	·	PoC 1	safari (5) · itunes (3) · iphone os (3)	—
13	wuzly	5	·	·	·	NEW	wuzly (5)	—
14	fedoraproject	4	1	·	·	PoC 1	fedora (4)	—
15	maven	4	·	·	·	PoC 2	org.apache.geronimo:geronimo (1) · org.eclipse.jetty:jetty-server (1) · org.jenkins-ci.main:jenkins-core (1)	—
16	novell	4	1	·	·		groupwise messenger (1) · messenger (1) · sentinel log manager (1)	—
17	oracle	4	·	·	·	PoC 1	outside in technology (2) · glassfish server (1) · sun storage common array manager (1)	—
18	pypi	4	·	·	·		celery (1) · nova (1) · plone (1)	—
19	redhat	4	·	·	·		enterprise linux desktop (2) · enterprise linux server (1) · enterprise linux server eus (1)	—
20	red hat inc.	4	1	·	·	PoC 2	red hat enterprise linux (4)	—
21	suse	4	1	·	·	PoC 1	linux enterprise desktop (3) · linux enterprise server (3) · linux enterprise software development kit (3)	—
22	3ssoftware	3	1	·	·	NEWPoC 3	codesys (3)	—
23	7t	3	·	·	·	NEW	igss (3)	—
24	autosectools	3	·	·	·	NEW	v-cms (3)	—
25	.bbsoftware	3	3	·	·	NEW	bb flashback (3)	—
26	canonical	3	·	·	·		ubuntu linux (3)	—
27	gentoo foundation inc.	3	·	·	·		gentoo linux (3)	—
28	gnu	3	1	·	·	PoC 1	inetutils (1) · gnutls (1) · mailman (1)	—
29	homeseer	3	·	·	·	NEW	homeseer hs2 (3)	—
30	ibm	3	·	·	·		lotus domino (1) · rational asset manager (1) · tivoli netcool\/reporter (1)	—
31	novell inc.	3	1	·	·	PoC 1	opensuse (1) · opensuse leap (1) · suse linux enterprise (1)	—
32	packagist	3	·	·	·	×3.0	phpmyadmin/phpmyadmin (2) · moodle/moodle (1)	—
33	phpmyadmin	3	·	·	·		phpmyadmin (3)	—
34	pidgin	3	·	·	·	×3.0	pidgin (3)	—
35	smartertools	3	1	·	·		smarterstats (3)	—
36	vtiger	3	·	·	·	PoC 1	vtiger crm (3)	—
37	zabbix	3	·	·	·	PoC 1	zabbix (3)	—
38	сообщество свободного программного обеспечения	3	1	·	·	PoC 2	debian gnu/linux (3)	—
39	apache	2	·	·	·	PoC 1	geronimo (1) · http server (1)	—
40	barter-sites	2	·	·	·	NEWPoC 2	com listing (2)	—
41	bst	2	·	·	·	NEWPoC 2	bestshoppro (2)	—
42	digium	2	·	·	·		asterisk (2)	—
43	dolibarr	2	·	·	·	NEWPoC 2	dolibarr erp\/crm (2)	—
44	emc	2	·	·	·		rsa adaptive authentication on-premise (2)	—
45	indusoft	2	2	·	·		web studio (2)	—
46	infoproject	2	·	·	·	NEWPoC 2	biznis heroj (2)	—
47	jasper project	2	·	·	·	NEW	jasper (2)	—
48	joomlaextensions	2	·	·	·	NEWPoC 2	com hmcommunity (2)	—
49	mini-stream	2	2	·	·	NEWPoC 2	ripper (1) · rm-mp3 converter (1)	—
50	mit	2	1	·	·	PoC 1	krb5-appl (1) · mit kerberos (1)	—