month report

August 2015

Data as of Jun 4, 2026, 13:25 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →

August 2015 closed with 625 published CVEs. 137 criticals, apple led volume, mostly via iphone os. Biggest breakout: adobe systems inc. at ×34.0 their 12-month median. Top weakness class — CWE-119 (127 CVE). 10 vendors cracked the top-100 for the first time.

Print view

Total CVEs

625

— MoM— YoY

Severity mix

137 / 121

critical / high

KEV added

0 ransomware-linked

Nuclei coverage

2.7%

17 CVEs with templates

Time to exploit

How fast the community ships detection after a CVE drops.

Days → Nuclei (median)

3854.2

n=17

Within 7 days

0.0%

Within 30 days

0.0%

Days → KEV (median)

2452

n=4

Detection gap

KEV pressure, no Nuclei coverage

August 2015 · vendors with active exploitation listed by CISA but no public detection template.

KEV 3microsoft53 CVE
KEV 3microsoft corp15 CVE
KEV 1canonical36 CVE
KEV 1oracle33 CVE
KEV 1opensuse32 CVE
KEV 1mozilla29 CVE
KEV 1mozilla corp.29 CVE
KEV 1redhat17 CVE

Weakness × Vendor

What's spreading where in August 2015

Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.

119Memory Buffer Bounds 79XSS 200Information Exposure 264CWE-264 20Improper Input Validation 255CWE-255 399CWE-399 17CWE-17 189CWE-189 284CWE-284 apple 66 1 17 7 8 1 2 1 2 3 apple inc.63 1 15 8 7 1 1 1 1 3 microsoft 15 2 7 9 13 1 cisco 2 4 5 4 8 1 13 3 canonical 18 1 2 4 4 hp 2 5 3 1 adobe 14 1 1 adobe systems inc.14 1 oracle 7 2 1 2 10 3 2 opensuse 15 1 1 1 2 3 cisco systems inc.2 4 1 8 1 12 mozilla 9 3 2 2 4 1

Breakout vendors

CVE count ≥3× their own 12-period median.

34.0×adobe systems inc.34 CVE
18.0×hp36 CVE
7.5×microsoft corp15 CVE
7.4×apple119 CVE
3.3×oracle33 CVE
3.0×fortinet3 CVE

First time in top-100

Vendors never in top-100 in the prior 24 periods.

#14gehealthcare26 CVE
#26basware7 CVE
#33netgate5 CVE
#36openbsd project5 CVE
#38check mk project4 CVE
#39garrettcom4 CVE
#47hp inc.3 CVE
#48mobile devices3 CVE
#49munic3 CVE
#50picketlink3 CVE

Top vendors

Ranked by distinct CVE count this period.

1apple—
119 CVE9 critCVSS 6.3
×7.4PoC 7
iphone os (71) · mac os x (66) · safari (28)
2apple inc.—
112 CVE9 critCVSS 6.4
PoC 5
ios (67) · os x (59) · safari (27)
3microsoft—
53 CVE35 critCVSS 7.3
KEV 3PoC 17
windows server 2008 (24) · windows vista (22) · windows 7 (22)
4cisco—
44 CVECVSS 5.8
telepresence video communication server software (12) · ios xe (8) · nx-os (5)
5canonical—
36 CVE8 critCVSS 7.0
KEV 1PoC 3
ubuntu linux (36)
6hp—
36 CVE3 critCVSS 7.2
×18.0
keyview (9) · systems insight manager (6) · version control repository manager (5)
7adobe—
35 CVE34 critCVSS 10.0
PoC 8
air sdk \& compiler (34) · flash player (34) · air sdk (34)
8adobe systems inc.—
34 CVE34 critCVSS 10.0
×34.0PoC 8
flash player (34) · adobe integrated runtime (34)
9oracle—
33 CVE6 critCVSS 6.2
×3.3KEV 1PoC 7
solaris (29) · linux (7) · retail order broker cloud service (1)
10opensuse—
32 CVE16 critCVSS 8.1
KEV 1PoC 9
opensuse (24) · evergreen (8)
11cisco systems inc.—
29 CVECVSS 5.9
telepresence video communication server (12) · cisco ios (7) · nx-os (5)
12mozilla—
29 CVE10 critCVSS 7.0
KEV 1PoC 2
firefox (23) · firefox os (10)
13mozilla corp.—
29 CVE10 critCVSS 7.3
KEV 1PoC 2
firefox (23) · firefox esr (18) · firefox os (10)
14gehealthcare—
26 CVE26 critCVSS 10.0
NEW
centricity pacs workstation (3) · centricity pacs-iw (2) · optima mr360 firmware (2)
15ibm—
21 CVE5 critCVSS 5.4
tivoli storage manager fastback (5) · websphere mq light (4) · tivoli storage manager for mail data protection for microsoft exchange server (3)
16debian—
20 CVE2 critCVSS 5.7
Nuclei 5PoC 5
debian linux (20)
17linux—
20 CVECVSS 5.2
PoC 3
linux kernel (20)
18redhat—
17 CVE1 critCVSS 7.6
KEV 1PoC 5
enterprise linux server aus (5) · enterprise linux workstation (4) · enterprise linux server (4)
19microsoft corp—
15 CVE10 critCVSS 7.6
×7.5KEV 3PoC 1
internet explorer (13) · microsoft office 2007 service pack 3 (1) · microsoft office 2010 service pack 2 (1)
20сообщество свободного программного обеспечения—
11 CVECVSS 6.3
PoC 2
debian gnu/linux (8) · linux (2) · libxml2 (1)
21emc—
9 CVE4 critCVSS 7.0
documentum content server (6) · documentum digital asset manager (1) · documentum taskspace (1)
22wireshark—
9 CVECVSS 4.3
wireshark (9)
23apache—
8 CVE1 critCVSS 6.5
PoC 3
activemq (4) · subversion (2) · groovy (1)
24fedoraproject—
8 CVE1 critCVSS 6.5
PoC 1
fedora (8)
25maven—
8 CVE1 critCVSS 6.7
Nuclei 1PoC 4
org.apache.activemq:activemq-broker (2) · org.apache.activemq:activemq-client (2) · org.apache.activemq:activemq-jaas (2)
26basware—
7 CVECVSS 5.0
NEW
banking (7)
27dell—
7 CVE1 critCVSS 7.7
PoC 1
bsafe ssl-c (5) · bsafe (5) · bios (1)
28symantec—
7 CVECVSS 6.5
PoC 3
endpoint protection manager (7)
29canonical ltd.—
6 CVECVSS 6.0
ubuntu (6)
30ibm corp.—
6 CVE5 critCVSS 8.9
tivoli storage manager fastback (5) · business process manager (1)
31pypi—
6 CVECVSS 4.3
django (2) · ansible (1) · glance (1)
32drupal—
5 CVECVSS 5.6
drupal (5)
33netgate—
5 CVECVSS 4.3
NEW
pfsense (5)
34openafs—
5 CVECVSS 4.0
openafs (5)
35openbsd—
5 CVECVSS 6.6
PoC 1
openssh (5)
36openbsd project—
5 CVECVSS 6.8
NEWPoC 1
openssh (5) · openbsd (1)
37wordpress—
5 CVECVSS 4.1
Nuclei 5PoC 2
wordpress (5)
38check mk project—
4 CVECVSS 6.1
NEW
check mk (4)
39garrettcom—
4 CVECVSS 4.8
NEW
magnum 6k firmware (4) · magnum 10k firmware (4)
40gnu—
4 CVECVSS 5.5
gnutls (2) · glibc (1) · libidn (1)
41openstack—
4 CVECVSS 4.0
glance (2) · horizon (1) · neutron (1)
42siemens—
4 CVECVSS 4.8
PoC 1
ruggedcom rox ii firmware (1) · compas (1) · ruggedcom rugged operating system (1)
43theforeman—
4 CVECVSS 5.0
foreman (4)
44apache software foundation—
3 CVECVSS 5.8
PoC 1
activemq (3)
45fortinet—
3 CVECVSS 5.2
×3.0
fortios (3)
46fortinet inc.—
3 CVECVSS 5.2
fortios (3)
47hp inc.—
3 CVE2 critCVSS 8.1
NEW
hp operations manager (2) · hp intelligent provisioning (1)
48mobile devices—
3 CVE3 critCVSS 9.0
NEW
c4 obd-ii dongle firmware (3)
49munic—
3 CVE3 critCVSS 9.0
NEW
mobile devices (mdi) obd-ii dongles (3)
50picketlink—
3 CVECVSS 5.3
NEW
picketlink (3)

#	Vendor	CVEs	Crit	KEV	Nuclei	Signals	Top products	Δ
1	apple	119	9	·	·	×7.4PoC 7	iphone os (71) · mac os x (66) · safari (28)	—
2	apple inc.	112	9	·	·	PoC 5	ios (67) · os x (59) · safari (27)	—
3	microsoft	53	35	3	·	KEV 3PoC 17	windows server 2008 (24) · windows vista (22) · windows 7 (22)	—
4	cisco	44	·	·	·		telepresence video communication server software (12) · ios xe (8) · nx-os (5)	—
5	canonical	36	8	1	·	KEV 1PoC 3	ubuntu linux (36)	—
6	hp	36	3	·	·	×18.0	keyview (9) · systems insight manager (6) · version control repository manager (5)	—
7	adobe	35	34	·	·	PoC 8	air sdk \& compiler (34) · flash player (34) · air sdk (34)	—
8	adobe systems inc.	34	34	·	·	×34.0PoC 8	flash player (34) · adobe integrated runtime (34)	—
9	oracle	33	6	1	·	×3.3KEV 1PoC 7	solaris (29) · linux (7) · retail order broker cloud service (1)	—
10	opensuse	32	16	1	·	KEV 1PoC 9	opensuse (24) · evergreen (8)	—
11	cisco systems inc.	29	·	·	·		telepresence video communication server (12) · cisco ios (7) · nx-os (5)	—
12	mozilla	29	10	1	·	KEV 1PoC 2	firefox (23) · firefox os (10)	—
13	mozilla corp.	29	10	1	·	KEV 1PoC 2	firefox (23) · firefox esr (18) · firefox os (10)	—
14	gehealthcare	26	26	·	·	NEW	centricity pacs workstation (3) · centricity pacs-iw (2) · optima mr360 firmware (2)	—
15	ibm	21	5	·	·		tivoli storage manager fastback (5) · websphere mq light (4) · tivoli storage manager for mail data protection for microsoft exchange server (3)	—
16	debian	20	2	·	5	Nuclei 5PoC 5	debian linux (20)	—
17	linux	20	·	·	·	PoC 3	linux kernel (20)	—
18	redhat	17	1	1	·	KEV 1PoC 5	enterprise linux server aus (5) · enterprise linux workstation (4) · enterprise linux server (4)	—
19	microsoft corp	15	10	3	·	×7.5KEV 3PoC 1	internet explorer (13) · microsoft office 2007 service pack 3 (1) · microsoft office 2010 service pack 2 (1)	—
20	сообщество свободного программного обеспечения	11	·	·	·	PoC 2	debian gnu/linux (8) · linux (2) · libxml2 (1)	—
21	emc	9	4	·	·		documentum content server (6) · documentum digital asset manager (1) · documentum taskspace (1)	—
22	wireshark	9	·	·	·		wireshark (9)	—
23	apache	8	1	·	·	PoC 3	activemq (4) · subversion (2) · groovy (1)	—
24	fedoraproject	8	1	·	·	PoC 1	fedora (8)	—
25	maven	8	1	·	1	Nuclei 1PoC 4	org.apache.activemq:activemq-broker (2) · org.apache.activemq:activemq-client (2) · org.apache.activemq:activemq-jaas (2)	—
26	basware	7	·	·	·	NEW	banking (7)	—
27	dell	7	1	·	·	PoC 1	bsafe ssl-c (5) · bsafe (5) · bios (1)	—
28	symantec	7	·	·	·	PoC 3	endpoint protection manager (7)	—
29	canonical ltd.	6	·	·	·		ubuntu (6)	—
30	ibm corp.	6	5	·	·		tivoli storage manager fastback (5) · business process manager (1)	—
31	pypi	6	·	·	·		django (2) · ansible (1) · glance (1)	—
32	drupal	5	·	·	·		drupal (5)	—
33	netgate	5	·	·	·	NEW	pfsense (5)	—
34	openafs	5	·	·	·		openafs (5)	—
35	openbsd	5	·	·	·	PoC 1	openssh (5)	—
36	openbsd project	5	·	·	·	NEWPoC 1	openssh (5) · openbsd (1)	—
37	wordpress	5	·	·	5	Nuclei 5PoC 2	wordpress (5)	—
38	check mk project	4	·	·	·	NEW	check mk (4)	—
39	garrettcom	4	·	·	·	NEW	magnum 6k firmware (4) · magnum 10k firmware (4)	—
40	gnu	4	·	·	·		gnutls (2) · glibc (1) · libidn (1)	—
41	openstack	4	·	·	·		glance (2) · horizon (1) · neutron (1)	—
42	siemens	4	·	·	·	PoC 1	ruggedcom rox ii firmware (1) · compas (1) · ruggedcom rugged operating system (1)	—
43	theforeman	4	·	·	·		foreman (4)	—
44	apache software foundation	3	·	·	·	PoC 1	activemq (3)	—
45	fortinet	3	·	·	·	×3.0	fortios (3)	—
46	fortinet inc.	3	·	·	·		fortios (3)	—
47	hp inc.	3	2	·	·	NEW	hp operations manager (2) · hp intelligent provisioning (1)	—
48	mobile devices	3	3	·	·	NEW	c4 obd-ii dongle firmware (3)	—
49	munic	3	3	·	·	NEW	mobile devices (mdi) obd-ii dongles (3)	—
50	picketlink	3	·	·	·	NEW	picketlink (3)	—