CVE Tools
Sign in
month report

November 2012

Data as of Jun 4, 2026, 13:25 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →

November 2012 closed with 445 published CVEs. 74 criticals, mozilla led volume, mostly via firefox. Biggest breakout: opensuse at ×11.3 their 12-month median. Top weakness class — CWE-20 (75 CVE). 10 vendors cracked the top-100 for the first time.

Print view
Total CVEs
445
— MoM— YoY
Severity mix
74 / 68
critical / high
KEV added
0
0 ransomware-linked
Nuclei coverage
0.7%
3 CVEs with templates

Time to exploit

How fast the community ships detection after a CVE drops.

Days → Nuclei (median)
4857.0
n=3
Within 7 days
0.0%
Within 30 days
0.0%
Days → KEV (median)
n=0
Weakness × Vendor

What's spreading where in November 2012

Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.

20Improper Input Validation264CWE-26479XSS119Memory Buffer Bounds399CWE-399200Information Exposure310CWE-310416Use After Free352CSRF89SQL Injectionmozilla273591opensuse24311101google5136215canonical143191redhat12412251suse143191xen9431microsoft123621apple121721adobe19paypal12apache411

Breakout vendors

CVE count ≥3× their own 12-period median.

First time in top-100

Vendors never in top-100 in the prior 24 periods.

Top vendors

Ranked by distinct CVE count this period.

  • 1mozilla
    36 CVE18 critCVSS 8.0
    ×3.3PoC 5
    firefox (29) · seamonkey (25) · thunderbird (25)
  • 2opensuse
    34 CVE17 critCVSS 7.7
    ×11.3PoC 3
    opensuse (34)
  • 3google
    30 CVECVSS 6.6
    PoC 1
    chrome (22) · android (3) · web toolkit (2)
  • 4canonical
    29 CVE17 critCVSS 7.9
    ×9.7PoC 4
    ubuntu linux (29)
  • 5redhat
    28 CVE10 critCVSS 7.3
    ×11.2PoC 1
    enterprise linux desktop (17) · enterprise linux eus (17) · enterprise linux server (17)
  • 6suse
    26 CVE17 critCVSS 8.2
    ×6.5PoC 3
    linux enterprise desktop (25) · linux enterprise server (25) · linux enterprise software development kit (25)
  • 7xen
    21 CVECVSS 4.7
    NEW
    xen (21)
  • 8microsoft
    17 CVE10 critCVSS 8.6
    .net framework (5) · excel (4) · windows 7 (4)
  • 9apple
    16 CVE9 critCVSS 7.4
    PoC 2
    quicktime (9) · iphone os (5) · safari (2)
  • 10adobe
    12 CVE11 critCVSS 9.9
    flash player (11) · air sdk (9) · air (9)
  • 11paypal
    12 CVECVSS 5.8
    NEWPoC 6
    payments standard (2) · payments pro (2) · invoicing (1)
  • 12apache
    11 CVECVSS 5.4
    ×3.7PoC 2
    tomcat (5) · axis2 (1) · cxf (1)
  • 13ibm
    11 CVE1 critCVSS 5.7
    websphere application server (4) · websphere datapower xc10 appliance (3) · tivoli federated identity manager (1)
  • 14maven
    11 CVECVSS 5.4
    ×5.5PoC 3
    org.apache.tomcat:tomcat (2) · org.jboss.resteasy:resteasy-client (1) · org.jboss.resteasy:resteasy-jaxb-provider (1)
  • 15сообщество свободного программного обеспечения
    11 CVECVSS 6.0
    ×3.7
    debian gnu/linux (11)
  • 16debian
    9 CVE4 critCVSS 7.1
    debian linux (9)
  • 17agilefleet
    7 CVE1 critCVSS 6.6
    NEW
    fleetcommander (7) · fleetcommander kiosk (7)
  • 18mahara
    7 CVE1 critCVSS 5.6
    mahara (7)
  • 19oscommerce
    7 CVECVSS 5.8
    NEW×7.0PoC 3
    oscommerce (7)
  • 20moodle
    6 CVECVSS 5.2
    NEW×6.0
    moodle (6)
  • 21pypi
    6 CVECVSS 5.2
    PoC 1
    glance (2) · apache-libcloud (1) · django (1)
  • 22bestpractical
    5 CVECVSS 4.9
    rt (4) · rtfm (1)
  • 23citrix
    5 CVECVSS 5.1
    xenserver (5)
  • 24david alkire
    5 CVECVSS 5.7
    NEWPoC 1
    drag \& drop gallery (5)
  • 25emc
    5 CVE1 critCVSS 5.2
    PoC 1
    it operations intelligence (2) · rsa data protection manager appliance (2) · rsa adaptive authentication on-premise (1)
  • 26gentoo foundation inc.
    5 CVE1 critCVSS 7.7
    gentoo linux (5)
  • 27libssh
    5 CVECVSS 6.9
    NEW
    libssh (5)
  • 28patterninsight
    5 CVECVSS 5.6
    NEW
    pattern insight (5)
  • 29amazon
    4 CVECVSS 6.2
    NEWPoC 1
    flexible payments service (1) · ec2 api tools java library (1) · elastic load balancing (1)
  • 30c3-ilex
    4 CVECVSS 6.4
    NEW
    eoscada (4)
  • 31havalite
    4 CVECVSS 5.9
    NEWPoC 2
    cms (4)
  • 32novell
    4 CVE2 critCVSS 8.9
    PoC 1
    file reporter (4)
  • 33novell inc.
    4 CVECVSS 5.7
    opensuse (4)
  • 34packagist
    4 CVECVSS 5.0
    b13/seo_basics (1) · in2code/powermail (1) · moodle/moodle (1)
  • 35red hat inc.
    4 CVE1 critCVSS 7.2
    PoC 2
    red hat enterprise linux (4)
  • 36sinapsi
    4 CVE3 critCVSS 9.3
    NEWPoC 4
    esolar (4) · esolar duo (4) · esolar light (4)
  • 37sinapsitech
    4 CVE3 critCVSS 9.3
    NEWPoC 4
    esolar duo photovoltaic system monitor (4) · esolar light photovoltaic system monitor (4) · esolar photovoltaic system monitor (4)
  • 38vmware
    4 CVE1 critCVSS 7.8
    ×4.0PoC 1
    workstation (3) · player (3) · ovf tool (1)
  • 39zen-cart
    4 CVECVSS 5.8
    PoC 3
    zen cart (4)
  • 40cisco
    3 CVE1 critCVSS 7.6
    prime data center network manager (1) · secure access control server (1) · unified meetingplace (1)
  • 41ge
    3 CVE3 critCVSS 10.0
    intelligent platforms proficy real-time information portal (3)
  • 42hp
    3 CVE2 critCVSS 9.0
    performance insight (2) · integrated lights-out 3 firmware (1) · integrated lights-out 4 firmware (1)
  • 43kde
    3 CVECVSS 6.1
    ×3.0PoC 2
    kde (3)
  • 44mcrypt
    3 CVECVSS 6.8
    NEW
    mcrypt (3)
  • 45neocrome
    3 CVECVSS 4.2
    NEWPoC 2
    seditio (3)
  • 46prestashop
    3 CVECVSS 5.8
    PoC 1
    prestashop (3) · ebay module (1) · ebay (1)
  • 47samedia
    3 CVECVSS 6.2
    NEWPoC 3
    landshop (3)
  • 48simon brown
    3 CVECVSS 5.5
    NEW
    pebble (3)
  • 49ubercart
    3 CVECVSS 5.8
    NEWPoC 1
    ubercart (3)
  • 50yahoo
    3 CVECVSS 4.3
    yui (3)

Top weaknesses

CWE classes by distinct CVE count.

1CWE-2075
2CWE-26463
3CWE-7953
4CWE-11948
5CWE-39927
6CWE-20021
7CWE-31017
8CWE-41615
9CWE-35213
10CWE-8913
11CWE-2211
12CWE-28711
13CWE-18910
14CWE-2959
15CWE-945
16CWE-164
17CWE-7873
18CWE-1342
19CWE-3622
20CWE-1251