month report

April 2012

Data as of Jun 4, 2026, 13:25 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →

April 2012 closed with 228 published CVEs. 59 criticals, mozilla led volume, mostly via firefox mobile. Biggest breakout: freetype at ×19.0 their 12-month median. Top weakness class — CWE-119 (58 CVE). 10 vendors cracked the top-100 for the first time.

Print view

Total CVEs

228

— MoM— YoY

Severity mix

59 / 33

critical / high

KEV added

0 ransomware-linked

Nuclei coverage

2.6%

6 CVEs with templates

Time to exploit

How fast the community ships detection after a CVE drops.

Days → Nuclei (median)

5066.9

n=6

Within 7 days

0.0%

Within 30 days

0.0%

Days → KEV (median)

3603

n=2

Detection gap

KEV pressure, no Nuclei coverage

April 2012 · vendors with active exploitation listed by CISA but no public detection template.

KEV 2microsoft11 CVE
KEV 2microsoft corp2 CVE

Weakness × Vendor

What's spreading where in April 2012

Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.

Breakout vendors

CVE count ≥3× their own 12-period median.

19.0×freetype19 CVE
6.3×novell inc.19 CVE
5.0×wireshark10 CVE
5.0×invensys5 CVE
4.0×freebsd4 CVE

First time in top-100

Vendors never in top-100 in the prior 24 periods.

#10intuit8 CVE
#16koyo5 CVE
#19siemens5 CVE
#20arcinfo4 CVE
#21atvise4 CVE
#24owncloud4 CVE
#25asterisk3 CVE
#29cloudera2 CVE
#34iconics2 CVE
#35icz2 CVE

Top vendors

Ranked by distinct CVE count this period.

1mozilla—
33 CVE24 critCVSS 7.5
firefox mobile (19) · firefox (12) · seamonkey (12)
2freetype—
19 CVE18 critCVSS 9.1
×19.0
freetype (19)
3novell inc.—
19 CVE18 critCVSS 9.1
×6.3
opensuse (18) · suse linux enterprise (1)
4google—
15 CVE3 critCVSS 7.3
PoC 3
chrome (14) · sketchup (1)
5gentoo foundation inc.—
11 CVE2 critCVSS 6.5
PoC 2
gentoo linux (11)
6microsoft—
11 CVE6 critCVSS 8.5
KEV 2
internet explorer (5) · forefront unified access gateway (2) · office (2)
7hp—
10 CVE1 critCVSS 4.7
system management homepage (3) · onboard administrator (3) · hp-ux (1)
8wireshark—
10 CVECVSS 4.2
×5.0PoC 3
wireshark (10)
9apple—
8 CVECVSS 6.8
PoC 2
iphone os (8) · safari (8) · itunes (7)
10intuit—
8 CVECVSS 2.6
NEWPoC 5
quickbooks (8)
11adobe—
6 CVE5 critCVSS 9.2
acrobat (4) · acrobat reader (4) · air (2)
12realnetworks—
6 CVECVSS 5.1
helix mobile server (6) · helix server (6)
13wordpress—
6 CVE2 critCVSS 6.5
Nuclei 6PoC 1
wordpress (6)
14ibm—
5 CVE1 critCVSS 5.4
tivoli directory server (3) · tivoli event pump (1) · rational clearquest (1)
15invensys—
5 CVECVSS 6.7
×5.0
wonderware information server (5) · archestra application object toolkit (2) · foxboro control software (2)
16koyo—
5 CVE2 critCVSS 7.4
NEW
h0-ecom (5) · h0-ecom100 (5) · h2-ecom (5)
17novell—
5 CVE2 critCVSS 6.7
PoC 2
zenworks configuration management (4) · imanager (1)
18redhat—
5 CVECVSS 4.7
PoC 3
enterprise linux (4) · openssl (1)
19siemens—
5 CVE1 critCVSS 8.0
NEWPoC 1
ruggedcom rugged operating system (2) · scalance s602 (2) · scalance s612 (2)
20arcinfo—
4 CVE2 critCVSS 7.2
NEW
frontvue (4) · pcvue (4) · plantvue (4)
21atvise—
4 CVECVSS 5.0
NEW
webmi2ads (4)
22f5—
4 CVECVSS 6.6
PoC 1
firepass (2) · nginx (2)
23freebsd—
4 CVECVSS 7.2
×4.0
libarchive (4)
24owncloud—
4 CVECVSS 5.3
NEWPoC 2
owncloud (4) · owncloud server (4)
25asterisk—
3 CVECVSS 6.5
NEW
open source (3)
26cisco—
3 CVE3 critCVSS 9.3
webex recording format player (3)
27quagga—
3 CVECVSS 3.9
quagga (3)
28apache—
2 CVECVSS 6.7
hadoop (1) · http server (1)
29cloudera—
2 CVECVSS 6.5
NEW
cloudera cdh (1) · cloudera manager (1) · cloudera service and configuration manager (1)
30debian—
2 CVECVSS 4.7
debian linux (2)
31dnnsoftware—
2 CVECVSS 4.3
dotnetnuke (2)
32emc—
2 CVECVSS 6.4
PoC 2
data protection advisor (2)
33fedoraproject—
2 CVECVSS 5.9
fedora (2)
34iconics—
2 CVE2 critCVSS 9.7
NEW
genesis32 (2) · bizviz (2)
35icz—
2 CVECVSS 5.5
NEW
sencha sns (2)
36justsystems—
2 CVE1 critCVSS 8.4
ichitaro portable with oreplug (2) · ichitaro (2) · ichitaro viewer (2)
37maian—
2 CVE1 critCVSS 7.2
NEW
gallery (2)
38menalto—
2 CVE1 critCVSS 7.2
NEW
gallery (2)
39microsoft corp—
2 CVECVSS 8.4
KEV 2
biztalk server (1) · microsoft commerce server (1) · microsoft office 2003 service pack 3 (1)
40openssl—
2 CVECVSS 7.5
PoC 1
openssl (2)
41red hat inc.—
2 CVECVSS 5.0
red hat enterprise linux (2)
42redmine—
2 CVECVSS 4.7
redmine (2)
43rockwellautomation—
2 CVECVSS 5.0
factorytalk (2) · rslogix 5000 (2)
44rubygems—
2 CVECVSS 5.0
PoC 2
spree (2)
45samba—
2 CVE1 critCVSS 8.3
samba (2)
46sixapart—
2 CVECVSS 5.9
movable type (2)
47spreecommerce—
2 CVECVSS 5.0
PoC 2
spree (2)
48vmware—
2 CVECVSS 8.3
esx (2) · esxi (2) · fusion (1)
49360zip—
1 CVECVSS 7.5
NEW
360zip (1)
50abb—
1 CVECVSS 7.7
NEW
interlink module (1) · quickteach (1) · robotstudio lite (1)

#	Vendor	CVEs	Crit	KEV	Nuclei	Signals	Top products	Δ
1	mozilla	33	24	·	·		firefox mobile (19) · firefox (12) · seamonkey (12)	—
2	freetype	19	18	·	·	×19.0	freetype (19)	—
3	novell inc.	19	18	·	·	×6.3	opensuse (18) · suse linux enterprise (1)	—
4	google	15	3	·	·	PoC 3	chrome (14) · sketchup (1)	—
5	gentoo foundation inc.	11	2	·	·	PoC 2	gentoo linux (11)	—
6	microsoft	11	6	2	·	KEV 2	internet explorer (5) · forefront unified access gateway (2) · office (2)	—
7	hp	10	1	·	·		system management homepage (3) · onboard administrator (3) · hp-ux (1)	—
8	wireshark	10	·	·	·	×5.0PoC 3	wireshark (10)	—
9	apple	8	·	·	·	PoC 2	iphone os (8) · safari (8) · itunes (7)	—
10	intuit	8	·	·	·	NEWPoC 5	quickbooks (8)	—
11	adobe	6	5	·	·		acrobat (4) · acrobat reader (4) · air (2)	—
12	realnetworks	6	·	·	·		helix mobile server (6) · helix server (6)	—
13	wordpress	6	2	·	6	Nuclei 6PoC 1	wordpress (6)	—
14	ibm	5	1	·	·		tivoli directory server (3) · tivoli event pump (1) · rational clearquest (1)	—
15	invensys	5	·	·	·	×5.0	wonderware information server (5) · archestra application object toolkit (2) · foxboro control software (2)	—
16	koyo	5	2	·	·	NEW	h0-ecom (5) · h0-ecom100 (5) · h2-ecom (5)	—
17	novell	5	2	·	·	PoC 2	zenworks configuration management (4) · imanager (1)	—
18	redhat	5	·	·	·	PoC 3	enterprise linux (4) · openssl (1)	—
19	siemens	5	1	·	·	NEWPoC 1	ruggedcom rugged operating system (2) · scalance s602 (2) · scalance s612 (2)	—
20	arcinfo	4	2	·	·	NEW	frontvue (4) · pcvue (4) · plantvue (4)	—
21	atvise	4	·	·	·	NEW	webmi2ads (4)	—
22	f5	4	·	·	·	PoC 1	firepass (2) · nginx (2)	—
23	freebsd	4	·	·	·	×4.0	libarchive (4)	—
24	owncloud	4	·	·	·	NEWPoC 2	owncloud (4) · owncloud server (4)	—
25	asterisk	3	·	·	·	NEW	open source (3)	—
26	cisco	3	3	·	·		webex recording format player (3)	—
27	quagga	3	·	·	·		quagga (3)	—
28	apache	2	·	·	·		hadoop (1) · http server (1)	—
29	cloudera	2	·	·	·	NEW	cloudera cdh (1) · cloudera manager (1) · cloudera service and configuration manager (1)	—
30	debian	2	·	·	·		debian linux (2)	—
31	dnnsoftware	2	·	·	·		dotnetnuke (2)	—
32	emc	2	·	·	·	PoC 2	data protection advisor (2)	—
33	fedoraproject	2	·	·	·		fedora (2)	—
34	iconics	2	2	·	·	NEW	genesis32 (2) · bizviz (2)	—
35	icz	2	·	·	·	NEW	sencha sns (2)	—
36	justsystems	2	1	·	·		ichitaro portable with oreplug (2) · ichitaro (2) · ichitaro viewer (2)	—
37	maian	2	1	·	·	NEW	gallery (2)	—
38	menalto	2	1	·	·	NEW	gallery (2)	—
39	microsoft corp	2	·	2	·	KEV 2	biztalk server (1) · microsoft commerce server (1) · microsoft office 2003 service pack 3 (1)	—
40	openssl	2	·	·	·	PoC 1	openssl (2)	—
41	red hat inc.	2	·	·	·		red hat enterprise linux (2)	—
42	redmine	2	·	·	·		redmine (2)	—
43	rockwellautomation	2	·	·	·		factorytalk (2) · rslogix 5000 (2)	—
44	rubygems	2	·	·	·	PoC 2	spree (2)	—
45	samba	2	1	·	·		samba (2)	—
46	sixapart	2	·	·	·		movable type (2)	—
47	spreecommerce	2	·	·	·	PoC 2	spree (2)	—
48	vmware	2	·	·	·		esx (2) · esxi (2) · fusion (1)	—
49	360zip	1	·	·	·	NEW	360zip (1)	—
50	abb	1	·	·	·	NEW	interlink module (1) · quickteach (1) · robotstudio lite (1)	—