month report
May 2012
Data as of Jun 4, 2026, 13:25 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →
May 2012 closed with 434 published CVEs. 89 criticals, oracle led volume, mostly via financial services software. Biggest breakout: linux at ×6.5 their 12-month median. Top weakness class — CWE-119 (62 CVE). 10 vendors cracked the top-100 for the first time.
Total CVEs
434
— MoM— YoY
Severity mix
89 / 77
critical / high
KEV added
0
0 ransomware-linked
Nuclei coverage
1.6%
7 CVEs with templates
Time to exploit
How fast the community ships detection after a CVE drops.
Days → Nuclei (median)
5037.1
n=7
Within 7 days
0.0%
Within 30 days
0.0%
Days → KEV (median)
3640
n=2
Detection gap
KEV pressure, no Nuclei coverage
May 2012 · vendors with active exploitation listed by CISA but no public detection template.
- KEV 1oracle81 CVE
Weakness × Vendor
What's spreading where in May 2012
Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.
Breakout vendors
CVE count ≥3× their own 12-period median.
First time in top-100
Vendors never in top-100 in the prior 24 periods.
- #19puppet6 CVE
- #25mariadb4 CVE
- #28puppetlabs4 CVE
- #31xarrow4 CVE
- #33connman3 CVE
- #38artiphp2 CVE
- #41chevereto2 CVE
- #43grboard2 CVE
- #44hypermethod2 CVE
- #45itechscripts2 CVE
Top vendors
Ranked by distinct CVE count this period.
- 81 CVE3 critCVSS 4.7KEV 1PoC 1financial services software (17) · peoplesoft products (15) · database server (13)
- 38 CVE13 critCVSS 7.7PoC 2chrome (38)
- 36 CVE1 critCVSS 6.1×6.5PoC 4linux kernel (36)
- 35 CVE1 critCVSS 6.2×4.7ios (14) · adaptive security appliance software (5) · 5500 series adaptive security appliance (5)
- 31 CVE12 critCVSS 7.1KEV 1Nuclei 1PoC 2mac os x (14) · mac os x server (11) · quicktime (10)
- 22 CVE15 critCVSS 8.3office (9) · windows server 2008 (8) · windows 7 (7)
- 15 CVE15 critCVSS 9.8illustrator (6) · illustrator cs5.5 (6) · shockwave player (5)
- 15 CVE2 critCVSS 7.1KEV 1Nuclei 1PoC 1enterprise linux (8) · enterprise linux workstation (5) · enterprise linux server (5)
- 14 CVE3 critCVSS 6.7KEV 1Nuclei 1insight management agents (4) · performance insight (3) · snmp agents for linux (2)
- 14 CVE3 critCVSS 7.1rational appscan (9) · cognos tm1 (1) · aix (1)
- 13 CVE2 critCVSS 5.7×4.3PoC 3gentoo linux (13)
- 10 CVECVSS 5.5sunos (8) · jdk (2) · jre (2)
- 8 CVECVSS 4.6PoC 1typo3/cms (3) · typo3/cms-frontend (2) · drupal/drupal (1)
- 8 CVE3 critCVSS 7.2×3.2endpoint protection (4) · web gateway (4) · network access control (1)
- 8 CVECVSS 4.5PoC 1typo3 (8)
- 8 CVE1 critCVSS 6.9debian gnu/linux (7) · libxml2 (1)
- 7 CVE1 critCVSS 6.6suse linux enterprise (4) · opensuse leap (2) · opensuse (1)
- 7 CVE2 critCVSS 7.2KEV 1Nuclei 1PoC 1php (7)
- 6 CVECVSS 4.4NEWPoC 3puppet (6) · puppet enterprise (6)
- 6 CVE1 critCVSS 5.7PoC 3netweaver (6)
- 5 CVE1 critCVSS 6.6×5.0KEV 1Nuclei 1PoC 1linux enterprise server (5) · linux enterprise desktop (4) · linux enterprise high availability extension (4)
- 5 CVE4 critCVSS 8.9×5.0esx (5) · esxi (5) · fusion (2)
- 4 CVECVSS 6.1PoC 1ubuntu linux (4)
- 4 CVE1 critCVSS 6.2KEV 1Nuclei 1PoC 1debian linux (3) · texlive-extra-utils (1)
- 4 CVECVSS 4.7NEWmariadb (4)
- 4 CVE1 critCVSS 7.0KEV 1Nuclei 1php (4)
- 4 CVECVSS 5.7PoC 1pligg cms (4)
- 4 CVECVSS 4.2NEWPoC 1puppet enterprise users (4) · puppet (4)
- 4 CVECVSS 6.1red hat enterprise linux (4)
- 4 CVECVSS 4.9PoC 3puppet (4)
- 4 CVE3 critCVSS 9.4NEWxarrow (4)
- 3 CVECVSS 6.1ubuntu (3)
- 3 CVE1 critCVSS 7.6NEWconnman (3)
- 3 CVECVSS 5.0×3.0drupal (3)
- 3 CVE1 critCVSS 7.1KEV 1Nuclei 1PoC 2fedora (3)
- 3 CVE2 critCVSS 9.0×3.0KEV 1Nuclei 1opensuse (3)
- 3 CVECVSS 5.0feedparser (1) · paste (1) · pastescript (1)
- 2 CVECVSS 4.7NEWPoC 2artiphp cms (2)
- 2 CVE1 critCVSS 8.5confluence server (2) · jira (2) · fisheye (1)
- 2 CVECVSS 5.7PoC 19608 firmware (1) · 9608g firmware (1) · 9611g firmware (1)
- 2 CVECVSS 4.7NEWchevereto (2)
- 2 CVECVSS 7.8PoC 2documentum information rights management (2)
- 2 CVECVSS 7.0NEWPoC 2grboard (2)
- 2 CVECVSS 7.5NEWPoC 2elearning server (2)
- 2 CVECVSS 5.4NEWPoC 2travelon express (2)
- 2 CVECVSS 4.0mysql (2) · mysql community server (1) · mysql server (1)
- 2 CVECVSS 3.5NEWPoC 2online merchant (2)
- 2 CVE2 critCVSS 9.3realplayer sp (2) · realplayer (2)
- 2 CVECVSS 5.2NEWjoomla content editor (2)
- 2 CVECVSS 4.3NEWbackupdb\(\) (1) · phpthumb\(\) (1)
| # | Vendor | CVEs | Crit | KEV | Nuclei | Signals | Top products | Δ | |
|---|---|---|---|---|---|---|---|---|---|
| 1 | oracle | 81 | 3 | 1 | · | KEV 1PoC 1 | financial services software (17) · peoplesoft products (15) · database server (13) | — | |
| 2 | 38 | 13 | · | · | PoC 2 | chrome (38) | — | ||
| 3 | linux | 36 | 1 | · | · | ×6.5PoC 4 | linux kernel (36) | — | |
| 4 | cisco | 35 | 1 | · | · | ×4.7 | ios (14) · adaptive security appliance software (5) · 5500 series adaptive security appliance (5) | — | |
| 5 | apple | 31 | 12 | 1 | 1 | KEV 1Nuclei 1PoC 2 | mac os x (14) · mac os x server (11) · quicktime (10) | — | |
| 6 | microsoft | 22 | 15 | · | · | office (9) · windows server 2008 (8) · windows 7 (7) | — | ||
| 7 | adobe | 15 | 15 | · | · | illustrator (6) · illustrator cs5.5 (6) · shockwave player (5) | — | ||
| 8 | redhat | 15 | 2 | 1 | 1 | KEV 1Nuclei 1PoC 1 | enterprise linux (8) · enterprise linux workstation (5) · enterprise linux server (5) | — | |
| 9 | hp | 14 | 3 | 1 | 1 | KEV 1Nuclei 1 | insight management agents (4) · performance insight (3) · snmp agents for linux (2) | — | |
| 10 | ibm | 14 | 3 | · | · | rational appscan (9) · cognos tm1 (1) · aix (1) | — | ||
| 11 | gentoo foundation inc. | 13 | 2 | · | · | ×4.3PoC 3 | gentoo linux (13) | — | |
| 12 | sun | 10 | · | · | · | sunos (8) · jdk (2) · jre (2) | — | ||
| 13 | packagist | 8 | · | · | · | PoC 1 | typo3/cms (3) · typo3/cms-frontend (2) · drupal/drupal (1) | — | |
| 14 | symantec | 8 | 3 | · | · | ×3.2 | endpoint protection (4) · web gateway (4) · network access control (1) | — | |
| 15 | typo3 | 8 | · | · | · | PoC 1 | typo3 (8) | — | |
| 16 | сообщество свободного программного обеспечения | 8 | 1 | · | · | debian gnu/linux (7) · libxml2 (1) | — | ||
| 17 | novell inc. | 7 | 1 | · | · | suse linux enterprise (4) · opensuse leap (2) · opensuse (1) | — | ||
| 18 | php | 7 | 2 | 1 | 1 | KEV 1Nuclei 1PoC 1 | php (7) | — | |
| 19 | puppet | 6 | · | · | · | NEWPoC 3 | puppet (6) · puppet enterprise (6) | — | |
| 20 | sap | 6 | 1 | · | · | PoC 3 | netweaver (6) | — | |
| 21 | suse | 5 | 1 | 1 | 1 | ×5.0KEV 1Nuclei 1PoC 1 | linux enterprise server (5) · linux enterprise desktop (4) · linux enterprise high availability extension (4) | — | |
| 22 | vmware | 5 | 4 | · | · | ×5.0 | esx (5) · esxi (5) · fusion (2) | — | |
| 23 | canonical | 4 | · | · | · | PoC 1 | ubuntu linux (4) | — | |
| 24 | debian | 4 | 1 | 1 | 1 | KEV 1Nuclei 1PoC 1 | debian linux (3) · texlive-extra-utils (1) | — | |
| 25 | mariadb | 4 | · | · | · | NEW | mariadb (4) | — | |
| 26 | php group | 4 | 1 | 1 | 1 | KEV 1Nuclei 1 | php (4) | — | |
| 27 | pligg | 4 | · | · | · | PoC 1 | pligg cms (4) | — | |
| 28 | puppetlabs | 4 | · | · | · | NEWPoC 1 | puppet enterprise users (4) · puppet (4) | — | |
| 29 | red hat inc. | 4 | · | · | · | red hat enterprise linux (4) | — | ||
| 30 | rubygems | 4 | · | · | · | PoC 3 | puppet (4) | — | |
| 31 | xarrow | 4 | 3 | · | · | NEW | xarrow (4) | — | |
| 32 | canonical ltd. | 3 | · | · | · | ubuntu (3) | — | ||
| 33 | connman | 3 | 1 | · | · | NEW | connman (3) | — | |
| 34 | drupal | 3 | · | · | · | ×3.0 | drupal (3) | — | |
| 35 | fedoraproject | 3 | 1 | 1 | 1 | KEV 1Nuclei 1PoC 2 | fedora (3) | — | |
| 36 | opensuse | 3 | 2 | 1 | 1 | ×3.0KEV 1Nuclei 1 | opensuse (3) | — | |
| 37 | pypi | 3 | · | · | · | feedparser (1) · paste (1) · pastescript (1) | — | ||
| 38 | artiphp | 2 | · | · | · | NEWPoC 2 | artiphp cms (2) | — | |
| 39 | atlassian | 2 | 1 | · | · | confluence server (2) · jira (2) · fisheye (1) | — | ||
| 40 | avaya | 2 | · | · | · | PoC 1 | 9608 firmware (1) · 9608g firmware (1) · 9611g firmware (1) | — | |
| 41 | chevereto | 2 | · | · | · | NEW | chevereto (2) | — | |
| 42 | emc | 2 | · | · | · | PoC 2 | documentum information rights management (2) | — | |
| 43 | grboard | 2 | · | · | · | NEWPoC 2 | grboard (2) | — | |
| 44 | hypermethod | 2 | · | · | · | NEWPoC 2 | elearning server (2) | — | |
| 45 | itechscripts | 2 | · | · | · | NEWPoC 2 | travelon express (2) | — | |
| 46 | mysql | 2 | · | · | · | mysql (2) · mysql community server (1) · mysql server (1) | — | ||
| 47 | oscommerce | 2 | · | · | · | NEWPoC 2 | online merchant (2) | — | |
| 48 | realnetworks | 2 | 2 | · | · | realplayer sp (2) · realplayer (2) | — | ||
| 49 | ryan demmer | 2 | · | · | · | NEW | joomla content editor (2) | — | |
| 50 | silisoftware | 2 | · | · | · | NEW | backupdb\(\) (1) · phpthumb\(\) (1) | — |