month report

February 2014

Data as of Jun 4, 2026, 13:25 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →

February 2014 closed with 445 published CVEs. 71 criticals, redhat led volume, mostly via enterprise linux server. Biggest breakout: microsoft corp at ×32.0 their 12-month median. Top weakness class — CWE-119 (69 CVE). 10 vendors cracked the top-100 for the first time.

Print view

Total CVEs

445

— MoM— YoY

Severity mix

71 / 73

critical / high

KEV added

0 ransomware-linked

Nuclei coverage

0.9%

4 CVEs with templates

Time to exploit

How fast the community ships detection after a CVE drops.

Days → Nuclei (median)

4400.7

n=4

Within 7 days

0.0%

Within 30 days

0.0%

Days → KEV (median)

3436

n=4

Detection gap

KEV pressure, no Nuclei coverage

February 2014 · vendors with active exploitation listed by CISA but no public detection template.

KEV 2redhat42 CVE
KEV 2microsoft34 CVE
KEV 2microsoft corp32 CVE
KEV 2opensuse29 CVE
KEV 2suse20 CVE
KEV 2adobe6 CVE
KEV 1google12 CVE

Weakness × Vendor

What's spreading where in February 2014

Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.

119Memory Buffer Bounds 79XSS 264CWE-264 20Improper Input Validation 200Information Exposure 310CWE-310 89SQL Injection 189CWE-189 287Improper Authentication 352CSRF redhat 4 10 4 3 7 2 2 cisco 2 5 8 1 1 5 8 3 microsoft 23 2 3 2 ibm 1 9 9 3 1 2 microsoft corp 22 2 3 2 opensuse 2 1 3 2 1 1 1 apple 19 4 1 1 2 canonical 1 4 3 3 2 suse 1 1 1 1 1 1 mozilla 2 1 1 1 debian 1 1 2 1 pidgin 3 7 3

Breakout vendors

CVE count ≥3× their own 12-period median.

32.0×microsoft corp32 CVE
7.3×fedoraproject11 CVE
5.0×symantec5 CVE
4.0×canonical28 CVE
4.0×novell inc.6 CVE
3.6×gentoo foundation inc.9 CVE
3.4×redhat42 CVE
3.0×php6 CVE

First time in top-100

Vendors never in top-100 in the prior 24 periods.

Top vendors

Ranked by distinct CVE count this period.

1redhat—
42 CVE3 critCVSS 6.7
×3.4KEV 2PoC 5
enterprise linux server (9) · enterprise linux desktop (9) · enterprise linux eus (9)
2cisco—
35 CVE3 critCVSS 6.2
unified communications manager (20) · ips sensor software (3) · unified contact center express editor software (3)
3microsoft—
34 CVE25 critCVSS 8.2
KEV 2PoC 3
internet explorer (26) · windows 8 (4) · windows 8.1 (3)
4ibm—
32 CVE2 critCVSS 5.3
rational focal point (5) · sametime (5) · financial transaction manager (4)
5microsoft corp—
32 CVE24 critCVSS 8.2
×32.0KEV 2PoC 2
internet explorer (25) · microsoft .net framework 3.5.1 (3) · microsoft .net framework 2.0 service pack 2 (3)
6opensuse—
29 CVE6 critCVSS 6.5
KEV 2PoC 6
opensuse (29) · leap (1) · osc (1)
7apple—
28 CVE9 critCVSS 7.1
PoC 1
mac os x (17) · quicktime (9) · mac os x server (6)
8canonical—
28 CVE5 critCVSS 6.2
×4.0PoC 4
ubuntu linux (28)
9suse—
20 CVE6 critCVSS 7.3
KEV 2PoC 3
linux enterprise desktop (11) · linux enterprise server (10) · linux enterprise software development kit (7)
10mozilla—
18 CVE5 critCVSS 7.2
PoC 3
firefox (16) · seamonkey (15) · thunderbird (10)
11debian—
14 CVE3 critCVSS 6.6
PoC 2
debian linux (13) · advanced package tool (1)
12pidgin—
14 CVE2 critCVSS 5.9
pidgin (14)
13mozilla corp.—
13 CVE4 critCVSS 7.4
NEWPoC 2
firefox (7) · seamonkey (4) · firefox esr (2)
14oracle—
13 CVE3 critCVSS 6.2
solaris (10) · enterprise manager ops center (2) · vm server (2)
15google—
12 CVE1 critCVSS 7.0
KEV 1PoC 1
chrome (12)
16fedoraproject—
11 CVE3 critCVSS 6.8
×7.3PoC 2
fedora (11)
17марк спенсер, шон иган и др.—
10 CVE1 critCVSS 5.9
NEW
pidgin (10)
18gentoo foundation inc.—
9 CVECVSS 5.3
×3.6
gentoo linux (9)
19сообщество свободного программного обеспечения—
9 CVECVSS 6.5
PoC 1
debian gnu/linux (7) · linux (2) · iptables (1)
20apache—
8 CVECVSS 4.3
tomcat (5) · activemq (1) · subversion (1)
21linux—
8 CVECVSS 5.2
PoC 2
linux kernel (8)
22maven—
8 CVECVSS 4.8
org.apache.tomcat:tomcat (4) · org.jenkins-ci.main:jenkins-core (2) · org.apache.activemq:activemq-core (1)
23adobe—
6 CVE4 critCVSS 9.1
KEV 2PoC 1
flash player (4) · adobe air (3) · adobe air sdk (3)
24ecryptfs—
6 CVECVSS 3.6
NEW
ecryptfs utils (6) · ecryptfs-utils (6)
25novell inc.—
6 CVECVSS 4.5
×4.0
suse linux enterprise (6)
26php—
6 CVECVSS 5.7
×3.0
php (6)
27sap—
6 CVECVSS 4.7
netweaver (5) · customer relationship management (1) · netweaver exchange infrastructure \(bc-xi\) (1)
28belkin—
5 CVE2 critCVSS 8.4
wemo home automation firmware (5)
29hp—
5 CVE1 critCVSS 7.7
application information optimizer (2) · service manager (1) · lefthand (1)
30openstack—
5 CVECVSS 4.7
grizzly (2) · havana (2) · image registry and delivery service \(glance\) (1)
31pypi—
5 CVECVSS 4.4
nova (2) · glance (1) · python-bugzilla (1)
32red hat—
5 CVECVSS 5.5
red hat enterprise linux 6 (5) · red hat enterprise linux 7 (5)
33rubygems—
5 CVECVSS 4.8
PoC 5
actionpack (2) · rails (1) · activerecord (1)
34siemens—
5 CVECVSS 6.1
simatic wincc open architecture (4) · ruggedcom rugged operating system (1)
35symantec—
5 CVECVSS 6.1
×5.0PoC 2
endpoint protection manager (2) · protection center (2) · web gateway (2)
36catfish project—
4 CVECVSS 4.6
NEW
catfish (4)
37cisco systems inc.—
4 CVECVSS 7.3
cisco intrusion prevention system (3) · cisco firewall services module (1)
38csounds—
4 CVE3 critCVSS 8.8
NEW
csound (4)
39dell—
4 CVECVSS 4.7
PoC 1
bsafe ssl-j (3) · kace k1000 systems management appliance (1) · kace k1000 systems management appliance software (1)
40emc—
4 CVE1 critCVSS 6.0
rsa bsafe ssl-j (3) · documentum foundation services (1)
41gnu—
4 CVECVSS 6.0
glibc (3) · cpio (1)
42i-doit—
4 CVECVSS 5.1
NEWPoC 1
i-doit (4)
43opensuse project—
4 CVECVSS 4.8
NEWPoC 1
opensuse (4)
44red hat inc.—
4 CVECVSS 4.2
red hat enterprise linux (4)
45siemens ag—
4 CVECVSS 5.6
simatic wincc oa (4)
46codeaurora—
3 CVECVSS 6.6
NEW
android-msm (3)
47cybozu—
3 CVECVSS 5.1
garoon (3)
48fortinet—
3 CVECVSS 4.0
fortiweb (2) · fortios (1)
49light speed gaming—
3 CVECVSS 6.0
NEW
mumble (3) · mumblekit (2)
50litech—
3 CVECVSS 6.7
NEW
router advertisement daemon (3)

#	Vendor	CVEs	Crit	KEV	Nuclei	Signals	Top products	Δ
1	redhat	42	3	2	·	×3.4KEV 2PoC 5	enterprise linux server (9) · enterprise linux desktop (9) · enterprise linux eus (9)	—
2	cisco	35	3	·	·		unified communications manager (20) · ips sensor software (3) · unified contact center express editor software (3)	—
3	microsoft	34	25	2	·	KEV 2PoC 3	internet explorer (26) · windows 8 (4) · windows 8.1 (3)	—
4	ibm	32	2	·	·		rational focal point (5) · sametime (5) · financial transaction manager (4)	—
5	microsoft corp	32	24	2	·	×32.0KEV 2PoC 2	internet explorer (25) · microsoft .net framework 3.5.1 (3) · microsoft .net framework 2.0 service pack 2 (3)	—
6	opensuse	29	6	2	·	KEV 2PoC 6	opensuse (29) · leap (1) · osc (1)	—
7	apple	28	9	·	·	PoC 1	mac os x (17) · quicktime (9) · mac os x server (6)	—
8	canonical	28	5	·	·	×4.0PoC 4	ubuntu linux (28)	—
9	suse	20	6	2	·	KEV 2PoC 3	linux enterprise desktop (11) · linux enterprise server (10) · linux enterprise software development kit (7)	—
10	mozilla	18	5	·	·	PoC 3	firefox (16) · seamonkey (15) · thunderbird (10)	—
11	debian	14	3	·	·	PoC 2	debian linux (13) · advanced package tool (1)	—
12	pidgin	14	2	·	·		pidgin (14)	—
13	mozilla corp.	13	4	·	·	NEWPoC 2	firefox (7) · seamonkey (4) · firefox esr (2)	—
14	oracle	13	3	·	·		solaris (10) · enterprise manager ops center (2) · vm server (2)	—
15	google	12	1	1	·	KEV 1PoC 1	chrome (12)	—
16	fedoraproject	11	3	·	·	×7.3PoC 2	fedora (11)	—
17	марк спенсер, шон иган и др.	10	1	·	·	NEW	pidgin (10)	—
18	gentoo foundation inc.	9	·	·	·	×3.6	gentoo linux (9)	—
19	сообщество свободного программного обеспечения	9	·	·	·	PoC 1	debian gnu/linux (7) · linux (2) · iptables (1)	—
20	apache	8	·	·	·		tomcat (5) · activemq (1) · subversion (1)	—
21	linux	8	·	·	·	PoC 2	linux kernel (8)	—
22	maven	8	·	·	·		org.apache.tomcat:tomcat (4) · org.jenkins-ci.main:jenkins-core (2) · org.apache.activemq:activemq-core (1)	—
23	adobe	6	4	2	·	KEV 2PoC 1	flash player (4) · adobe air (3) · adobe air sdk (3)	—
24	ecryptfs	6	·	·	·	NEW	ecryptfs utils (6) · ecryptfs-utils (6)	—
25	novell inc.	6	·	·	·	×4.0	suse linux enterprise (6)	—
26	php	6	·	·	·	×3.0	php (6)	—
27	sap	6	·	·	·		netweaver (5) · customer relationship management (1) · netweaver exchange infrastructure \(bc-xi\) (1)	—
28	belkin	5	2	·	·		wemo home automation firmware (5)	—
29	hp	5	1	·	·		application information optimizer (2) · service manager (1) · lefthand (1)	—
30	openstack	5	·	·	·		grizzly (2) · havana (2) · image registry and delivery service \(glance\) (1)	—
31	pypi	5	·	·	·		nova (2) · glance (1) · python-bugzilla (1)	—
32	red hat	5	·	·	·		red hat enterprise linux 6 (5) · red hat enterprise linux 7 (5)	—
33	rubygems	5	·	·	·	PoC 5	actionpack (2) · rails (1) · activerecord (1)	—
34	siemens	5	·	·	·		simatic wincc open architecture (4) · ruggedcom rugged operating system (1)	—
35	symantec	5	·	·	·	×5.0PoC 2	endpoint protection manager (2) · protection center (2) · web gateway (2)	—
36	catfish project	4	·	·	·	NEW	catfish (4)	—
37	cisco systems inc.	4	·	·	·		cisco intrusion prevention system (3) · cisco firewall services module (1)	—
38	csounds	4	3	·	·	NEW	csound (4)	—
39	dell	4	·	·	·	PoC 1	bsafe ssl-j (3) · kace k1000 systems management appliance (1) · kace k1000 systems management appliance software (1)	—
40	emc	4	1	·	·		rsa bsafe ssl-j (3) · documentum foundation services (1)	—
41	gnu	4	·	·	·		glibc (3) · cpio (1)	—
42	i-doit	4	·	·	·	NEWPoC 1	i-doit (4)	—
43	opensuse project	4	·	·	·	NEWPoC 1	opensuse (4)	—
44	red hat inc.	4	·	·	·		red hat enterprise linux (4)	—
45	siemens ag	4	·	·	·		simatic wincc oa (4)	—
46	codeaurora	3	·	·	·	NEW	android-msm (3)	—
47	cybozu	3	·	·	·		garoon (3)	—
48	fortinet	3	·	·	·		fortiweb (2) · fortios (1)	—
49	light speed gaming	3	·	·	·	NEW	mumble (3) · mumblekit (2)	—
50	litech	3	·	·	·	NEW	router advertisement daemon (3)	—