month report

June 2014

Data as of Jun 4, 2026, 13:25 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →

June 2014 closed with 448 published CVEs — +21.1% YoY . 99 criticals, microsoft led volume, mostly via internet explorer. Biggest breakout: owncloud at ×20.0 their 12-month median. Top weakness class — CWE-119 (90 CVE). 10 vendors cracked the top-100 for the first time.

Print view

Total CVEs

448

— MoM+21.1% YoY

Severity mix

99 / 63

critical / high

KEV added

0 ransomware-linked

Nuclei coverage

3.8%

17 CVEs with templates

Time to exploit

How fast the community ships detection after a CVE drops.

Days → Nuclei (median)

4287.3

n=17

Within 7 days

0.0%

Within 30 days

0.0%

Days → KEV (median)

2909

n=1

Detection gap

KEV pressure, no Nuclei coverage

June 2014 · vendors with active exploitation listed by CISA but no public detection template.

KEV 1redhat20 CVE
KEV 1opensuse14 CVE
KEV 1suse14 CVE
KEV 1linux11 CVE
KEV 1canonical8 CVE
KEV 1сообщество свободного программного обеспечения6 CVE
KEV 1oracle3 CVE

Weakness × Vendor

What's spreading where in June 2014

Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.

119Memory Buffer Bounds 79XSS 264CWE-264 20Improper Input Validation 94Code Injection 89SQL Injection 200Information Exposure 352CSRF 310CWE-310 22Path Traversal microsoft 52 1 2 2 3 1 2 microsoft corp 51 1 2 1 3 1 2 ibm 1 3 5 2 1 1 2 1 owncloud 3 6 1 2 1 1 redhat 2 1 2 2 cisco 1 6 3 1 1 opensuse 3 1 1 packagist 3 1 3 1 1 suse 1 1 3 sap 2 1 linux 2 3 mozilla 3 1

Breakout vendors

CVE count ≥3× their own 12-period median.

20.0×owncloud20 CVE
17.7×microsoft corp62 CVE
6.0×adobe systems inc.6 CVE
5.0×f55 CVE
4.7×packagist14 CVE
4.0×php4 CVE
3.0×novell inc.9 CVE
3.0×linuxfoundation3 CVE

First time in top-100

Vendors never in top-100 in the prior 24 periods.

#39universityofcalifornia4 CVE
#44linuxfoundation3 CVE
#45mambo-foundation3 CVE
#51ajaydsouza2 CVE
#54boonex2 CVE
#55cisofy2 CVE
#56copa-data2 CVE
#57copadata2 CVE
#58corel2 CVE
#59directfb2 CVE

Top vendors

Ranked by distinct CVE count this period.

1microsoft—
64 CVE55 critCVSS 8.4
PoC 2
internet explorer (56) · windows 8 (4) · windows server 2012 (4)
2microsoft corp—
62 CVE54 critCVSS 8.4
×17.7PoC 2
internet explorer (55) · windows 8 (3) · windows 7 service pack 1 (3)
3ibm—
24 CVE1 critCVSS 5.9
PoC 1
marketing platform (4) · security access manager for web appliance (3) · openpages grc platform (2)
4owncloud—
20 CVECVSS 5.2
×20.0Nuclei 2PoC 2
owncloud server (19) · owncloud (13)
5redhat—
20 CVE1 critCVSS 5.5
KEV 1PoC 2
enterprise linux (8) · enterprise linux server (5) · enterprise linux server aus (4)
6cisco—
15 CVECVSS 5.4
PoC 1
unified communications domain manager (3) · webex meetings server (3) · unified communications manager (2)
7opensuse—
14 CVE2 critCVSS 6.0
KEV 1PoC 4
opensuse (14) · leap (3)
8packagist—
14 CVECVSS 5.9
×4.7Nuclei 2PoC 9
typo3/cms (6) · geshi/geshi (2) · symfony/yaml (2)
9suse—
14 CVE2 critCVSS 5.7
KEV 1PoC 2
linux enterprise desktop (10) · linux enterprise server (9) · linux enterprise software development kit (7)
10sap—
13 CVECVSS 5.1
PoC 2
supplier relationship management (2) · open hub service (1) · brazil (1)
11linux—
11 CVECVSS 4.3
KEV 1PoC 3
linux kernel (11)
12mozilla—
11 CVE8 critCVSS 9.0
firefox (10) · thunderbird (3) · firefox esr (3)
13novell inc.—
9 CVECVSS 4.5
×3.0PoC 1
opensuse (5) · suse linux enterprise (4)
14canonical—
8 CVECVSS 4.9
KEV 1PoC 1
ubuntu linux (8)
15debian—
8 CVECVSS 5.2
debian linux (7) · advanced package tool (1)
16hp—
8 CVE4 critCVSS 6.8
PoC 3
executive scorecard (3) · release control (2) · service virtualization (1)
17mozilla corp.—
8 CVE7 critCVSS 9.5
firefox (3) · thunderbird (3) · seamonkey (2)
18adobe—
7 CVE2 critCVSS 6.6
PoC 1
adobe air sdk (6) · adobe air (6) · flash player (6)
19fedoraproject—
7 CVECVSS 4.7
PoC 2
fedora (6) · sssd (1)
20symantec—
7 CVE1 critCVSS 5.0
web gateway (4) · data insight (2) · encryption desktop (1)
21adobe systems inc.—
6 CVE1 critCVSS 6.3
×6.0
flash player (4) · adobe pepper flash для google chrome (2)
22emc—
6 CVECVSS 6.8
PoC 5
documentum content server (3) · documentum digital asset manager (1) · rsa adaptive authentication hosted (1)
23pypi—
6 CVECVSS 5.2
PoC 1
djblets (2) · keystone (2) · ajenti (1)
24typo3—
6 CVECVSS 4.7
PoC 4
typo3 (6)
25сообщество свободного программного обеспечения—
6 CVE1 critCVSS 6.1
KEV 1PoC 1
debian gnu/linux (5) · linux (1)
26alienvault—
5 CVE4 critCVSS 9.6
PoC 2
open source security information management (5)
27f5—
5 CVECVSS 3.4
×5.0
enterprise manager (2) · arx firmware (2) · big-ip access policy manager (2)
28gnu—
5 CVECVSS 5.8
PoC 1
gnutls (5) · libtasn1 (3)
29google—
5 CVE1 critCVSS 7.4
chrome (4) · sketchup (1)
30cisco systems inc.—
4 CVECVSS 5.7
PoC 1
микропрограммное обеспечение системы коммуникаций cisco unified communications manager (3) · cisco intrusion prevention system (1)
31ddsn—
4 CVECVSS 5.0
cm3 acora content management system (4)
32dell—
4 CVE1 critCVSS 6.6
bsafe share (3) · powervault ml6000 (1) · powervault ml6000 firmware (1)
33digium—
4 CVECVSS 5.3
PoC 4
asterisk (4) · certified asterisk (2)
34google inc—
4 CVECVSS 6.9
google chrome (4)
35mariadb—
4 CVECVSS 5.7
PoC 1
mariadb (4)
36mediawiki—
4 CVECVSS 5.3
mediawiki (4)
37openssl—
4 CVECVSS 5.7
PoC 1
openssl (4)
38php—
4 CVECVSS 4.6
×4.0
php (4)
39universityofcalifornia—
4 CVE2 critCVSS 7.2
NEW
boinc client (4)
40xen—
4 CVECVSS 5.3
xen (4)
41dlink—
3 CVE1 critCVSS 8.3
PoC 2
dir-505l shareport mobile companion (1) · dir505l shareport mobile companion firmware (1) · dir505 shareport mobile companion (1)
42freebsd—
3 CVECVSS 3.0
PoC 1
freebsd (3)
43juniper—
3 CVECVSS 5.7
screenos (2) · netscreen-5400 (2) · netscreen-5200 (2)
44linuxfoundation—
3 CVECVSS 4.7
NEW×3.0
cups-filters (3)
45mambo-foundation—
3 CVECVSS 3.1
NEWPoC 3
mambo cms (3)
46monkey-project—
3 CVECVSS 5.9
monkey (3)
47openstack—
3 CVECVSS 6.2
PoC 1
keystone (2) · neutron (1)
48oracle—
3 CVECVSS 6.7
KEV 1PoC 1
linux (2) · solaris (1)
49red hat inc.—
3 CVECVSS 5.3
red hat enterprise linux (3)
50sharetronix—
3 CVECVSS 7.0
sharetronix (3)

#	Vendor	CVEs	Crit	KEV	Nuclei	Signals	Top products	Δ
1	microsoft	64	55	·	·	PoC 2	internet explorer (56) · windows 8 (4) · windows server 2012 (4)	—
2	microsoft corp	62	54	·	·	×17.7PoC 2	internet explorer (55) · windows 8 (3) · windows 7 service pack 1 (3)	—
3	ibm	24	1	·	·	PoC 1	marketing platform (4) · security access manager for web appliance (3) · openpages grc platform (2)	—
4	owncloud	20	·	·	2	×20.0Nuclei 2PoC 2	owncloud server (19) · owncloud (13)	—
5	redhat	20	1	1	·	KEV 1PoC 2	enterprise linux (8) · enterprise linux server (5) · enterprise linux server aus (4)	—
6	cisco	15	·	·	·	PoC 1	unified communications domain manager (3) · webex meetings server (3) · unified communications manager (2)	—
7	opensuse	14	2	1	·	KEV 1PoC 4	opensuse (14) · leap (3)	—
8	packagist	14	·	·	2	×4.7Nuclei 2PoC 9	typo3/cms (6) · geshi/geshi (2) · symfony/yaml (2)	—
9	suse	14	2	1	·	KEV 1PoC 2	linux enterprise desktop (10) · linux enterprise server (9) · linux enterprise software development kit (7)	—
10	sap	13	·	·	·	PoC 2	supplier relationship management (2) · open hub service (1) · brazil (1)	—
11	linux	11	·	1	·	KEV 1PoC 3	linux kernel (11)	—
12	mozilla	11	8	·	·		firefox (10) · thunderbird (3) · firefox esr (3)	—
13	novell inc.	9	·	·	·	×3.0PoC 1	opensuse (5) · suse linux enterprise (4)	—
14	canonical	8	·	1	·	KEV 1PoC 1	ubuntu linux (8)	—
15	debian	8	·	·	·		debian linux (7) · advanced package tool (1)	—
16	hp	8	4	·	·	PoC 3	executive scorecard (3) · release control (2) · service virtualization (1)	—
17	mozilla corp.	8	7	·	·		firefox (3) · thunderbird (3) · seamonkey (2)	—
18	adobe	7	2	·	·	PoC 1	adobe air sdk (6) · adobe air (6) · flash player (6)	—
19	fedoraproject	7	·	·	·	PoC 2	fedora (6) · sssd (1)	—
20	symantec	7	1	·	·		web gateway (4) · data insight (2) · encryption desktop (1)	—
21	adobe systems inc.	6	1	·	·	×6.0	flash player (4) · adobe pepper flash для google chrome (2)	—
22	emc	6	·	·	·	PoC 5	documentum content server (3) · documentum digital asset manager (1) · rsa adaptive authentication hosted (1)	—
23	pypi	6	·	·	·	PoC 1	djblets (2) · keystone (2) · ajenti (1)	—
24	typo3	6	·	·	·	PoC 4	typo3 (6)	—
25	сообщество свободного программного обеспечения	6	1	1	·	KEV 1PoC 1	debian gnu/linux (5) · linux (1)	—
26	alienvault	5	4	·	·	PoC 2	open source security information management (5)	—
27	f5	5	·	·	·	×5.0	enterprise manager (2) · arx firmware (2) · big-ip access policy manager (2)	—
28	gnu	5	·	·	·	PoC 1	gnutls (5) · libtasn1 (3)	—
29	google	5	1	·	·		chrome (4) · sketchup (1)	—
30	cisco systems inc.	4	·	·	·	PoC 1	микропрограммное обеспечение системы коммуникаций cisco unified communications manager (3) · cisco intrusion prevention system (1)	—
31	ddsn	4	·	·	·		cm3 acora content management system (4)	—
32	dell	4	1	·	·		bsafe share (3) · powervault ml6000 (1) · powervault ml6000 firmware (1)	—
33	digium	4	·	·	·	PoC 4	asterisk (4) · certified asterisk (2)	—
34	google inc	4	·	·	·		google chrome (4)	—
35	mariadb	4	·	·	·	PoC 1	mariadb (4)	—
36	mediawiki	4	·	·	·		mediawiki (4)	—
37	openssl	4	·	·	·	PoC 1	openssl (4)	—
38	php	4	·	·	·	×4.0	php (4)	—
39	universityofcalifornia	4	2	·	·	NEW	boinc client (4)	—
40	xen	4	·	·	·		xen (4)	—
41	dlink	3	1	·	·	PoC 2	dir-505l shareport mobile companion (1) · dir505l shareport mobile companion firmware (1) · dir505 shareport mobile companion (1)	—
42	freebsd	3	·	·	·	PoC 1	freebsd (3)	—
43	juniper	3	·	·	·		screenos (2) · netscreen-5400 (2) · netscreen-5200 (2)	—
44	linuxfoundation	3	·	·	·	NEW×3.0	cups-filters (3)	—
45	mambo-foundation	3	·	·	·	NEWPoC 3	mambo cms (3)	—
46	monkey-project	3	·	·	·		monkey (3)	—
47	openstack	3	·	·	·	PoC 1	keystone (2) · neutron (1)	—
48	oracle	3	·	1	·	KEV 1PoC 1	linux (2) · solaris (1)	—
49	red hat inc.	3	·	·	·		red hat enterprise linux (3)	—
50	sharetronix	3	·	·	·		sharetronix (3)	—