month report

October 2013

Data as of Jun 4, 2026, 13:25 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →

October 2013 closed with 634 published CVEs — +13.4% YoY . 74 criticals, oracle led volume, mostly via jre. Biggest breakout: apple at ×24.7 their 12-month median. Top weakness class — CWE-264 (83 CVE). 10 vendors cracked the top-100 for the first time.

Print view

Total CVEs

634

— MoM+13.4% YoY

Severity mix

74 / 96

critical / high

KEV added

0 ransomware-linked

Nuclei coverage

1.4%

9 CVEs with templates

Time to exploit

How fast the community ships detection after a CVE drops.

Days → Nuclei (median)

4524.2

n=9

Within 7 days

0.0%

Within 30 days

0.0%

Days → KEV (median)

3109

n=2

Detection gap

KEV pressure, no Nuclei coverage

October 2013 · vendors with active exploitation listed by CISA but no public detection template.

KEV 2microsoft25 CVE

Weakness × Vendor

What's spreading where in October 2013

Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.

264CWE-264 20Improper Input Validation 119Memory Buffer Bounds 399CWE-399 79XSS 310CWE-310 200Information Exposure 352CSRF 89SQL Injection 94Code Injection oracle cisco 14 30 3 5 3 3 1 1 2 ibm 9 4 2 1 8 1 2 2 3 sun apple 14 3 1 1 5 3 redhat 6 5 1 2 3 1 microsoft 2 3 11 4 2 google 4 13 canonical 9 2 1 1 mozilla 1 1 4 2 2 hp 1 1 1 3 1 1 gentoo foundation inc.1 4 1 1

Breakout vendors

CVE count ≥3× their own 12-period median.

24.7×apple37 CVE
9.5×cisco76 CVE
5.5×gentoo foundation inc.11 CVE
4.0×сообщество свободного программного обеспечения8 CVE
4.0×emerson4 CVE
4.0×f54 CVE
4.0×mediawiki4 CVE
4.0×red hat inc.4 CVE
3.2×ibm49 CVE
3.0×hp12 CVE

First time in top-100

Vendors never in top-100 in the prior 24 periods.

#19juniper6 CVE
#22ovislink5 CVE
#24systemd project5 CVE
#27enea4 CVE
#33tylertech4 CVE
#34baramundi3 CVE
#41watchguard3 CVE
#42wernerd3 CVE
#44brickcom2 CVE
#46corel2 CVE

Top vendors

Ranked by distinct CVE count this period.

1oracle—
115 CVE21 critCVSS 5.9
Nuclei 1PoC 2
jre (50) · jdk (50) · fusion middleware (10)
2cisco—
76 CVE3 critCVSS 6.4
×9.5Nuclei 1PoC 1
unified computing system (21) · nx-os (11) · adaptive security appliance software (11)
3ibm—
49 CVE5 critCVSS 5.8
×3.2
maximo asset management (21) · websphere extreme scale (3) · infosphere information server (3)
4sun—
38 CVE9 critCVSS 6.2
jdk (33) · jre (33) · sunos (5)
5apple—
37 CVECVSS 4.8
×24.7
mac os x (30) · iphone os (3) · apple remote desktop (2)
6redhat—
32 CVE4 critCVSS 6.7
PoC 4
enterprise linux (11) · enterprise linux desktop (7) · enterprise linux server (7)
7microsoft—
25 CVE14 critCVSS 8.3
KEV 2
internet explorer (9) · windows 7 (7) · windows server 2012 (6)
8google—
23 CVECVSS 6.5
chrome (23)
9canonical—
22 CVE3 critCVSS 5.6
PoC 2
ubuntu linux (22) · apt-xapian-index (1)
10mozilla—
19 CVE10 critCVSS 8.4
PoC 2
firefox (14) · seamonkey (12) · thunderbird (12)
11hp—
12 CVE1 critCVSS 3.9
×3.0
intelligent management center (6) · imc service operation management software module (4) · service manager (4)
12gentoo foundation inc.—
11 CVECVSS 5.3
×5.5PoC 2
gentoo linux (11)
13debian—
9 CVECVSS 6.1
PoC 2
debian linux (9)
14maven—
9 CVECVSS 6.1
Nuclei 1PoC 1
org.restlet.jse:org.restlet (2) · org.apache.shindig:shindig-php (1) · org.apache.sling:org.apache.sling.api (1)
15opensuse—
9 CVECVSS 6.2
PoC 3
opensuse (9)
16xen—
8 CVECVSS 3.4
xen (8)
17сообщество свободного программного обеспечения—
8 CVECVSS 6.3
×4.0PoC 2
debian gnu/linux (6) · linux (2)
18gnu—
6 CVECVSS 5.2
PoC 2
glibc (6) · eglibc (1)
19juniper—
6 CVE1 critCVSS 6.4
NEW
junos (6)
20rubygems—
6 CVECVSS 4.9
PoC 6
rubygems-update (4) · rubygems (4) · actionmailer (1)
21apache—
5 CVECVSS 6.0
PoC 1
sling auth core component (1) · camel (1) · mod fcgid (1)
22ovislink—
5 CVE1 critCVSS 7.5
NEWPoC 1
airlive wl2600cam (3) · airlive od-2060hd (2) · airlive poe100hd (2)
23pypi—
5 CVECVSS 3.8
django (2) · nova (1) · pycrypto (1)
24systemd project—
5 CVECVSS 5.5
NEWPoC 1
systemd (5)
25tp-link—
5 CVE2 critCVSS 8.4
PoC 1
tl-sc3171g (5) · lm firmware (5) · tl-sc3130 (5)
26emerson—
4 CVE4 critCVSS 9.8
×4.0
dl 8000 remote terminal unit (4) · roc 800l remote terminal unit (4) · roc 800 remote terminal unit (4)
27enea—
4 CVE4 critCVSS 9.8
NEW
ose (4)
28f5—
4 CVECVSS 7.2
×4.0
big-ip access policy manager (3) · big-ip application security manager (1) · big-ip edge gateway (1)
29mediawiki—
4 CVECVSS 5.3
×4.0PoC 1
mediawiki (4)
30openstack—
4 CVECVSS 3.3
PoC 1
compute (1) · folsom (1) · glance (1)
31red hat inc.—
4 CVECVSS 5.7
×4.0
red hat enterprise linux (4)
32the centos project—
4 CVECVSS 5.9
centos (4)
33tylertech—
4 CVECVSS 5.5
NEW
taxweb (4)
34baramundi—
3 CVECVSS 7.8
NEW
management suite (3)
35drupal—
3 CVECVSS 5.7
drupal (3)
36emc—
3 CVECVSS 5.3
atmos (1) · geosynchrony (1) · rsa authentication agent (1)
37linux—
3 CVECVSS 6.0
PoC 1
linux kernel (3)
38mariadb—
3 CVECVSS 4.3
PoC 1
mariadb (3)
39menalto—
3 CVECVSS 6.7
gallery (3)
40sap—
3 CVECVSS 6.2
erp central component (2) · netweaver (1)
41watchguard—
3 CVE1 critCVSS 6.3
NEWPoC 1
fireware (2) · server center (1) · watchguard system manager (1)
42wernerd—
3 CVECVSS 6.7
NEWPoC 2
zrtpcpp (3)
43adobe—
2 CVE2 critCVSS 9.5
acrobat reader (1) · robohelp (1) · acrobat (1)
44brickcom—
2 CVECVSS 7.3
NEW
osd-040e (2) · ob-100ae (2) · wcb-100ap (2)
45condor project—
2 CVECVSS 3.8
condor (2)
46corel—
2 CVE2 critCVSS 9.3
NEWPoC 1
pdf fusion (2)
47dell—
2 CVECVSS 5.5
PoC 1
bsafe crypto-c-micro-edition (1) · bsafe crypto-j (1) · quest one password manager (1)
48djangoproject—
2 CVECVSS 4.3
django (2)
49dlink—
2 CVE1 critCVSS 9.8
PoC 1
dir-100 (2) · di-604s (1) · di-524up (1)
50dropbear ssh project—
2 CVECVSS 5.0
dropbear ssh (2)

#	Vendor	CVEs	Crit	KEV	Nuclei	Signals	Top products	Δ
1	oracle	115	21	·	1	Nuclei 1PoC 2	jre (50) · jdk (50) · fusion middleware (10)	—
2	cisco	76	3	·	1	×9.5Nuclei 1PoC 1	unified computing system (21) · nx-os (11) · adaptive security appliance software (11)	—
3	ibm	49	5	·	·	×3.2	maximo asset management (21) · websphere extreme scale (3) · infosphere information server (3)	—
4	sun	38	9	·	·		jdk (33) · jre (33) · sunos (5)	—
5	apple	37	·	·	·	×24.7	mac os x (30) · iphone os (3) · apple remote desktop (2)	—
6	redhat	32	4	·	·	PoC 4	enterprise linux (11) · enterprise linux desktop (7) · enterprise linux server (7)	—
7	microsoft	25	14	2	·	KEV 2	internet explorer (9) · windows 7 (7) · windows server 2012 (6)	—
8	google	23	·	·	·		chrome (23)	—
9	canonical	22	3	·	·	PoC 2	ubuntu linux (22) · apt-xapian-index (1)	—
10	mozilla	19	10	·	·	PoC 2	firefox (14) · seamonkey (12) · thunderbird (12)	—
11	hp	12	1	·	·	×3.0	intelligent management center (6) · imc service operation management software module (4) · service manager (4)	—
12	gentoo foundation inc.	11	·	·	·	×5.5PoC 2	gentoo linux (11)	—
13	debian	9	·	·	·	PoC 2	debian linux (9)	—
14	maven	9	·	·	1	Nuclei 1PoC 1	org.restlet.jse:org.restlet (2) · org.apache.shindig:shindig-php (1) · org.apache.sling:org.apache.sling.api (1)	—
15	opensuse	9	·	·	·	PoC 3	opensuse (9)	—
16	xen	8	·	·	·		xen (8)	—
17	сообщество свободного программного обеспечения	8	·	·	·	×4.0PoC 2	debian gnu/linux (6) · linux (2)	—
18	gnu	6	·	·	·	PoC 2	glibc (6) · eglibc (1)	—
19	juniper	6	1	·	·	NEW	junos (6)	—
20	rubygems	6	·	·	·	PoC 6	rubygems-update (4) · rubygems (4) · actionmailer (1)	—
21	apache	5	·	·	·	PoC 1	sling auth core component (1) · camel (1) · mod fcgid (1)	—
22	ovislink	5	1	·	·	NEWPoC 1	airlive wl2600cam (3) · airlive od-2060hd (2) · airlive poe100hd (2)	—
23	pypi	5	·	·	·		django (2) · nova (1) · pycrypto (1)	—
24	systemd project	5	·	·	·	NEWPoC 1	systemd (5)	—
25	tp-link	5	2	·	·	PoC 1	tl-sc3171g (5) · lm firmware (5) · tl-sc3130 (5)	—
26	emerson	4	4	·	·	×4.0	dl 8000 remote terminal unit (4) · roc 800l remote terminal unit (4) · roc 800 remote terminal unit (4)	—
27	enea	4	4	·	·	NEW	ose (4)	—
28	f5	4	·	·	·	×4.0	big-ip access policy manager (3) · big-ip application security manager (1) · big-ip edge gateway (1)	—
29	mediawiki	4	·	·	·	×4.0PoC 1	mediawiki (4)	—
30	openstack	4	·	·	·	PoC 1	compute (1) · folsom (1) · glance (1)	—
31	red hat inc.	4	·	·	·	×4.0	red hat enterprise linux (4)	—
32	the centos project	4	·	·	·		centos (4)	—
33	tylertech	4	·	·	·	NEW	taxweb (4)	—
34	baramundi	3	·	·	·	NEW	management suite (3)	—
35	drupal	3	·	·	·		drupal (3)	—
36	emc	3	·	·	·		atmos (1) · geosynchrony (1) · rsa authentication agent (1)	—
37	linux	3	·	·	·	PoC 1	linux kernel (3)	—
38	mariadb	3	·	·	·	PoC 1	mariadb (3)	—
39	menalto	3	·	·	·		gallery (3)	—
40	sap	3	·	·	·		erp central component (2) · netweaver (1)	—
41	watchguard	3	1	·	·	NEWPoC 1	fireware (2) · server center (1) · watchguard system manager (1)	—
42	wernerd	3	·	·	·	NEWPoC 2	zrtpcpp (3)	—
43	adobe	2	2	·	·		acrobat reader (1) · robohelp (1) · acrobat (1)	—
44	brickcom	2	·	·	·	NEW	osd-040e (2) · ob-100ae (2) · wcb-100ap (2)	—
45	condor project	2	·	·	·		condor (2)	—
46	corel	2	2	·	·	NEWPoC 1	pdf fusion (2)	—
47	dell	2	·	·	·	PoC 1	bsafe crypto-c-micro-edition (1) · bsafe crypto-j (1) · quest one password manager (1)	—
48	djangoproject	2	·	·	·		django (2)	—
49	dlink	2	1	·	·	PoC 1	dir-100 (2) · di-604s (1) · di-524up (1)	—
50	dropbear ssh project	2	·	·	·		dropbear ssh (2)	—