month report

August 2013

Data as of Jun 4, 2026, 13:25 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →

August 2013 closed with 360 published CVEs. 49 criticals, ibm led volume, mostly via lotus domino. Biggest breakout: cacti at ×4.0 their 12-month median. Top weakness class — CWE-79 (71 CVE). 10 vendors cracked the top-100 for the first time.

Print view

Total CVEs

360

— MoM— YoY

Severity mix

49 / 81

critical / high

KEV added

0 ransomware-linked

Nuclei coverage

1.4%

5 CVEs with templates

Time to exploit

How fast the community ships detection after a CVE drops.

Days → Nuclei (median)

4592.0

n=5

Within 7 days

0.0%

Within 30 days

0.0%

Days → KEV (median)

3107

n=1

Weakness × Vendor

What's spreading where in August 2013

Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.

79XSS 119Memory Buffer Bounds 264CWE-264 20Improper Input Validation 399CWE-399 89SQL Injection 200Information Exposure 22Path Traversal 310CWE-310 78OS Command Injection ibm 18 2 2 1 3 3 1 cisco 1 4 3 2 9 1 1 microsoft 1 15 2 1 paloaltonetworks 1 1 1 1 1 12 opensuse 1 3 1 4 1 1 1 mozilla 2 3 3 1 1 redhat 1 3 1 1 apache 2 3 3 1 3 canonical 1 5 2 1 debian 1 1 1 3 1 1 1 puppet 2 3 2 xen 2 3 1 1 1

Breakout vendors

CVE count ≥3× their own 12-period median.

4.0×cacti4 CVE
3.0×apache12 CVE
3.0×canonical12 CVE
3.0×pypi9 CVE

First time in top-100

Vendors never in top-100 in the prior 24 periods.

#4paloaltonetworks19 CVE
#18ni6 CVE
#22putty5 CVE
#24bigtreecms4 CVE
#31simon tatham4 CVE
#32happyworm3 CVE
#34juniper3 CVE
#37searchblox3 CVE
#38alienvault2 CVE
#39corporater2 CVE

Top vendors

Ranked by distinct CVE count this period.

1ibm—
35 CVE2 critCVSS 5.6
lotus domino (6) · websphere application server (6) · cognos business intelligence (3)
2cisco—
29 CVE2 critCVSS 7.1
unified communications manager (9) · prime central for hosted collaboration solution assurance (4) · ios xr (2)
3microsoft—
19 CVE11 critCVSS 8.2
internet explorer (11) · windows 7 (5) · windows 8 (5)
4paloaltonetworks—
19 CVE13 critCVSS 7.8
NEW
pan-os (18) · netconnect (1) · globalprotect (1)
5opensuse—
16 CVECVSS 5.4
PoC 3
opensuse (16)
6mozilla—
15 CVE5 critCVSS 6.8
firefox (15) · seamonkey (11) · thunderbird (9)
7redhat—
13 CVECVSS 5.7
PoC 1
enterprise virtualization (3) · enterprise linux (3) · jboss enterprise application platform (3)
8apache—
12 CVE1 critCVSS 6.1
×3.0
xml security for c\+\+ (5) · cxf (2) · ofbiz (2)
9canonical—
12 CVECVSS 4.8
×3.0PoC 3
ubuntu linux (12)
10debian—
11 CVECVSS 6.5
debian linux (11)
11puppet—
11 CVECVSS 5.3
PoC 2
puppet enterprise (11) · puppet (3)
12xen—
11 CVECVSS 6.1
xen (11)
13bestpractical—
9 CVECVSS 4.7
rt (9)
14pypi—
9 CVECVSS 5.5
×3.0PoC 1
pip (2) · swift (2) · pyshop (1)
15gentoo foundation inc.—
7 CVECVSS 5.8
PoC 3
gentoo linux (7)
16google—
7 CVECVSS 7.1
chrome (7)
17myrephp—
6 CVECVSS 5.9
PoC 6
myre business directory (2) · myre realty manager (2) · myre vacation rental (2)
18ni—
6 CVE3 critCVSS 7.3
NEW
labwindows (4) · measurementstudio (4) · labview (3)
19symantec—
6 CVECVSS 5.6
backup exec (4) · encryption desktop (1) · pgp desktop (1)
20hp—
5 CVE2 critCVSS 7.5
3com router (1) · 5500-24g-4sfp hi switch with 2 interface slots (1) · 5500-24g dc ei switch (1)
21maven—
5 CVECVSS 4.9
PoC 1
org.apache.cxf:cxf-rt-frontend-jaxrs (1) · org.apache.cxf:cxf-rt-transports-http (1) · org.apache.santuario:xmlsec (1)
22putty—
5 CVECVSS 4.4
NEW
putty (5)
23сообщество свободного программного обеспечения—
5 CVECVSS 5.5
debian gnu/linux (5)
24bigtreecms—
4 CVECVSS 6.3
NEWPoC 3
bigtree cms (4)
25bitcoin—
4 CVECVSS 5.7
bitcoin core (4) · bitcoind (1) · bitcoin-qt (1)
26cacti—
4 CVECVSS 6.7
×4.0PoC 1
cacti (4)
27intel—
4 CVECVSS 3.5
wimax network service (4)
28linux—
4 CVECVSS 6.1
PoC 1
linux kernel (4)
29openstack—
4 CVECVSS 5.4
PoC 1
folsom (2) · grizzly (2) · havana (2)
30packagist—
4 CVECVSS 6.2
PoC 1
bednee/cooluri (1) · jambagecom/div2007 (1) · openid/php-openid (1)
31simon tatham—
4 CVECVSS 5.0
NEW
putty (4)
32happyworm—
3 CVECVSS 4.3
NEW
jplayer (3)
33joachim ruhs—
3 CVE1 critCVSS 7.3
locator (3)
34juniper—
3 CVECVSS 4.1
NEW
junos space (3) · junos space ja1500 appliance (3) · junos space virtual appliance (3)
35puppetlabs—
3 CVECVSS 5.4
PoC 2
puppet (3)
36rubygems—
3 CVECVSS 6.7
PoC 3
puppet (2) · sounder (1)
37searchblox—
3 CVECVSS 5.6
NEW
searchblox (3)
38alienvault—
2 CVECVSS 5.9
NEWPoC 2
open source security information management (2)
39corporater—
2 CVECVSS 5.5
NEW
epm suite (2)
40fedoraproject—
2 CVECVSS 3.5
fedora (2)
41freebsd—
2 CVECVSS 7.5
freebsd (2)
42kennziffer—
2 CVECVSS 5.9
NEW
ke search (2)
43libraw—
2 CVECVSS 7.5
NEWPoC 1
libraw (2)
44mikejolley—
2 CVECVSS 4.3
NEWNuclei 2PoC 1
download monitor (2)
45monster menus project—
2 CVECVSS 4.0
NEWPoC 1
monster menus (2)
46novell inc.—
2 CVECVSS 5.5
opensuse leap (2)
47open-emr—
2 CVECVSS 5.4
openemr (2)
48osisoft—
2 CVECVSS 5.0
NEW
pi interface (2)
49ows—
2 CVECVSS 3.5
NEW
scald (2)
50php—
2 CVECVSS 5.5
php (2)

#	Vendor	CVEs	Crit	KEV	Nuclei	Signals	Top products	Δ
1	ibm	35	2	·	·		lotus domino (6) · websphere application server (6) · cognos business intelligence (3)	—
2	cisco	29	2	·	·		unified communications manager (9) · prime central for hosted collaboration solution assurance (4) · ios xr (2)	—
3	microsoft	19	11	·	·		internet explorer (11) · windows 7 (5) · windows 8 (5)	—
4	paloaltonetworks	19	13	·	·	NEW	pan-os (18) · netconnect (1) · globalprotect (1)	—
5	opensuse	16	·	·	·	PoC 3	opensuse (16)	—
6	mozilla	15	5	·	·		firefox (15) · seamonkey (11) · thunderbird (9)	—
7	redhat	13	·	·	·	PoC 1	enterprise virtualization (3) · enterprise linux (3) · jboss enterprise application platform (3)	—
8	apache	12	1	·	·	×3.0	xml security for c\+\+ (5) · cxf (2) · ofbiz (2)	—
9	canonical	12	·	·	·	×3.0PoC 3	ubuntu linux (12)	—
10	debian	11	·	·	·		debian linux (11)	—
11	puppet	11	·	·	·	PoC 2	puppet enterprise (11) · puppet (3)	—
12	xen	11	·	·	·		xen (11)	—
13	bestpractical	9	·	·	·		rt (9)	—
14	pypi	9	·	·	·	×3.0PoC 1	pip (2) · swift (2) · pyshop (1)	—
15	gentoo foundation inc.	7	·	·	·	PoC 3	gentoo linux (7)	—
16	google	7	·	·	·		chrome (7)	—
17	myrephp	6	·	·	·	PoC 6	myre business directory (2) · myre realty manager (2) · myre vacation rental (2)	—
18	ni	6	3	·	·	NEW	labwindows (4) · measurementstudio (4) · labview (3)	—
19	symantec	6	·	·	·		backup exec (4) · encryption desktop (1) · pgp desktop (1)	—
20	hp	5	2	·	·		3com router (1) · 5500-24g-4sfp hi switch with 2 interface slots (1) · 5500-24g dc ei switch (1)	—
21	maven	5	·	·	·	PoC 1	org.apache.cxf:cxf-rt-frontend-jaxrs (1) · org.apache.cxf:cxf-rt-transports-http (1) · org.apache.santuario:xmlsec (1)	—
22	putty	5	·	·	·	NEW	putty (5)	—
23	сообщество свободного программного обеспечения	5	·	·	·		debian gnu/linux (5)	—
24	bigtreecms	4	·	·	·	NEWPoC 3	bigtree cms (4)	—
25	bitcoin	4	·	·	·		bitcoin core (4) · bitcoind (1) · bitcoin-qt (1)	—
26	cacti	4	·	·	·	×4.0PoC 1	cacti (4)	—
27	intel	4	·	·	·		wimax network service (4)	—
28	linux	4	·	·	·	PoC 1	linux kernel (4)	—
29	openstack	4	·	·	·	PoC 1	folsom (2) · grizzly (2) · havana (2)	—
30	packagist	4	·	·	·	PoC 1	bednee/cooluri (1) · jambagecom/div2007 (1) · openid/php-openid (1)	—
31	simon tatham	4	·	·	·	NEW	putty (4)	—
32	happyworm	3	·	·	·	NEW	jplayer (3)	—
33	joachim ruhs	3	1	·	·		locator (3)	—
34	juniper	3	·	·	·	NEW	junos space (3) · junos space ja1500 appliance (3) · junos space virtual appliance (3)	—
35	puppetlabs	3	·	·	·	PoC 2	puppet (3)	—
36	rubygems	3	·	·	·	PoC 3	puppet (2) · sounder (1)	—
37	searchblox	3	·	·	·	NEW	searchblox (3)	—
38	alienvault	2	·	·	·	NEWPoC 2	open source security information management (2)	—
39	corporater	2	·	·	·	NEW	epm suite (2)	—
40	fedoraproject	2	·	·	·		fedora (2)	—
41	freebsd	2	·	·	·		freebsd (2)	—
42	kennziffer	2	·	·	·	NEW	ke search (2)	—
43	libraw	2	·	·	·	NEWPoC 1	libraw (2)	—
44	mikejolley	2	·	·	2	NEWNuclei 2PoC 1	download monitor (2)	—
45	monster menus project	2	·	·	·	NEWPoC 1	monster menus (2)	—
46	novell inc.	2	·	·	·		opensuse leap (2)	—
47	open-emr	2	·	·	·		openemr (2)	—
48	osisoft	2	·	·	·	NEW	pi interface (2)	—
49	ows	2	·	·	·	NEW	scald (2)	—
50	php	2	·	·	·		php (2)	—