month report

February 2017

Data as of Jun 4, 2026, 13:25 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →

February 2017 closed with 1,075 published CVEs — +172.8% YoY . 118 criticals, ibm led volume, mostly via security access manager for web 8.0 firmware. Biggest breakout: libdwarf project at ×24.0 their 12-month median. Top weakness class — CWE-200 (131 CVE). 10 vendors cracked the top-100 for the first time.

Print view

Total CVEs

1,075

— MoM+172.8% YoY

Severity mix

118 / 428

critical / high

KEV added

0 ransomware-linked

Nuclei coverage

0.8%

9 CVEs with templates

Time to exploit

How fast the community ships detection after a CVE drops.

Days → Nuclei (median)

3300.5

n=9

Within 7 days

0.0%

Within 30 days

0.0%

Days → KEV (median)

1848

n=2

Weakness × Vendor

What's spreading where in February 2017

Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.

Breakout vendors

CVE count ≥3× their own 12-period median.

24.0×libdwarf project24 CVE
13.2×ibm192 CVE
7.0×intel7 CVE
6.3×nvidia19 CVE
6.0×gnu12 CVE
6.0×netapp12 CVE
6.0×honeywell6 CVE
6.0×libav6 CVE
5.0×emc10 CVE
5.0×advantech5 CVE

First time in top-100

Vendors never in top-100 in the prior 24 periods.

#2ibm corporation189 CVE
#9google inc.54 CVE
#13libdwarf project24 CVE
#18nvidia corporation16 CVE
#22graphicsmagick12 CVE
#32ytnef project9 CVE
#42iceni6 CVE
#43libav6 CVE
#47wso26 CVE
#48ооо «юбитех»6 CVE

Top vendors

Ranked by distinct CVE count this period.

1ibm—
192 CVE10 critCVSS 5.9
×13.2PoC 3
security access manager for web 8.0 firmware (14) · security access manager 9.0 firmware (14) · security key lifecycle manager (11)
2ibm corporation—
189 CVE10 critCVSS 6.1
NEWPoC 3
kenexa lms on cloud (20) · access manager (16) · key lifecycle manager (11)
3apple—
152 CVE2 critCVSS 7.4
×3.8PoC 21
iphone os (107) · mac os x (79) · watchos (43)
4apple inc.—
125 CVE2 critCVSS 7.2
PoC 10
ios (91) · macos (75) · safari (29)
5google—
77 CVE1 critCVSS 6.7
PoC 2
android (55) · chrome (22)
6google inc—
63 CVE1 critCVSS 6.9
PoC 2
android (45) · google chrome (18)
7linux—
56 CVE1 critCVSS 6.9
PoC 2
linux kernel (56)
8debian—
54 CVE5 critCVSS 7.3
PoC 10
debian linux (54)
9google inc.—
54 CVE1 critCVSS 7.0
NEWPoC 2
android (54)
10cisco—
35 CVE2 critCVSS 6.9
PoC 2
unified communications manager (5) · secure access control system (4) · secure firewall management center (3)
11сообщество свободного программного обеспечения—
31 CVE2 critCVSS 7.4
Nuclei 1PoC 6
linux (18) · debian gnu/linux (14) · busybox (2)
12adobe—
24 CVE2 critCVSS 8.5
PoC 4
flash player (13) · flash player desktop runtime (13) · digital editions (9)
13libdwarf project—
24 CVE1 critCVSS 6.8
NEW×24.0PoC 5
libdwarf (24)
14moxa—
22 CVE5 critCVSS 7.8
×4.4PoC 1
nport p5150a series firmware (8) · nport 6100 series firmware (8) · nport 5x50a1-m12 series firmware (8)
15opensuse—
21 CVE2 critCVSS 7.2
PoC 2
leap (16) · opensuse (16)
16fedoraproject—
19 CVE5 critCVSS 7.2
PoC 5
fedora (19)
17nvidia—
19 CVECVSS 7.5
×6.3PoC 4
gpu driver (16) · tegra k1 cd570m-a1 (3) · tegra k1 cd580m-a1 (3)
18nvidia corporation—
16 CVECVSS 7.5
NEWPoC 2
windows gpu display driver (10) · gpu display driver (5) · linux gpu display driver (1)
19adobe systems inc.—
14 CVE1 critCVSS 8.9
PoC 4
flash player (13) · adobe digital editions (1)
20gstreamer—
14 CVECVSS 6.8
gstreamer (14)
21gnu—
12 CVECVSS 6.0
×6.0PoC 1
libiberty (9) · ed (1) · glibc (1)
22graphicsmagick—
12 CVE2 critCVSS 7.3
NEW
graphicsmagick (12)
23netapp—
12 CVE3 critCVSS 7.6
×6.0
data ontap (2) · oncommand insight (2) · e-series santricity os controller (1)
24packagist—
11 CVE5 critCVSS 8.1
PoC 7
zendframework/zendframework (2) · simplesamlphp/simplesamlphp (2) · movim/moxl (1)
25emc—
10 CVE4 critCVSS 7.3
×5.0
documentum d2 (2) · smarts network configuration manager (2) · recoverpoint for virtual machines (2)
26pypi—
10 CVE2 critCVSS 6.8
PoC 1
plone (4) · html5lib (2) · pycrypto (1)
27canonical—
9 CVE2 critCVSS 8.0
PoC 2
ubuntu linux (9)
28dell—
9 CVE3 critCVSS 7.7
×3.0PoC 1
sonicwall secure remote access server (3) · vce vision intelligent operations (2) · bsafe crypto-j (2)
29imagemagick—
9 CVECVSS 6.9
PoC 1
imagemagick (9)
30redhat—
9 CVECVSS 6.7
PoC 2
enterprise linux server aus (7) · enterprise linux desktop (7) · enterprise linux server (7)
31webkitgtk—
9 CVECVSS 7.9
×4.5PoC 5
webkitgtk\+ (9)
32ytnef project—
9 CVECVSS 7.5
NEW
ytnef (9)
33ооо «русбитех-астра»—
9 CVE2 critCVSS 7.9
Nuclei 1PoC 5
astra linux special edition (9) · astra linux special edition для «эльбрус» (2)
34schneider-electric—
8 CVE3 critCVSS 7.8
PoC 1
magelis xbt gt advanced touchscreen panel firmware (2) · ion5000 (2) · ion7300 (2)
35intel—
7 CVECVSS 7.3
×7.0PoC 2
core i7-3632qm (3) · core i7-4500u (3) · core i7-6700k (3)
36maven—
7 CVECVSS 6.2
PoC 2
com.sonyericsson.jenkins.plugins.bfa:build-failure-analyzer (1) · com.tupilabs.image_gallery:image-gallery (1) · org.jenkins-ci.plugins:extra-columns (1)
37xen—
7 CVECVSS 6.2
×3.5
xen (7)
38facebook—
6 CVE6 critCVSS 9.8
hhvm (6)
39freebsd—
6 CVECVSS 7.4
×4.0PoC 1
freebsd (6)
40honeywell—
6 CVE3 critCVSS 7.8
×6.0
xl web ii controller (5) · experion process knowledge system (1)
41ibm corp.—
6 CVE3 critCVSS 8.8
PoC 1
aix (2) · general parallel file system (1) · bigfix platform (1)
42iceni—
6 CVECVSS 7.8
NEWPoC 1
argus (6)
43libav—
6 CVECVSS 5.5
NEW×6.0PoC 1
libav (6)
44red hat inc.—
6 CVECVSS 7.2
red hat enterprise linux (5) · policykit (1)
45samsung—
6 CVECVSS 7.2
PoC 2
exynos 5800 (3) · samsung mobile (3)
46siemens—
6 CVE2 critCVSS 8.4
×3.0
sicam pas\/pqs (2) · ruggedcom network management software (2) · eta2 firmware (1)
47wso2—
6 CVECVSS 6.5
NEWPoC 6
carbon (3) · identity server (2) · enablement server for java (1)
48ооо «юбитех»—
6 CVECVSS 7.2
NEW
ublinux (6)
49advantech—
5 CVE2 critCVSS 8.2
×5.0PoC 2
susiaccess (3) · webaccess (2)
50artifex—
5 CVECVSS 6.8
PoC 1
mupdf (3) · mujs (1) · afpl ghostscript (1)

#	Vendor	CVEs	Crit	KEV	Nuclei	Signals	Top products	Δ
1	ibm	192	10	·	·	×13.2PoC 3	security access manager for web 8.0 firmware (14) · security access manager 9.0 firmware (14) · security key lifecycle manager (11)	—
2	ibm corporation	189	10	·	·	NEWPoC 3	kenexa lms on cloud (20) · access manager (16) · key lifecycle manager (11)	—
3	apple	152	2	·	·	×3.8PoC 21	iphone os (107) · mac os x (79) · watchos (43)	—
4	apple inc.	125	2	·	·	PoC 10	ios (91) · macos (75) · safari (29)	—
5	google	77	1	·	·	PoC 2	android (55) · chrome (22)	—
6	google inc	63	1	·	·	PoC 2	android (45) · google chrome (18)	—
7	linux	56	1	·	·	PoC 2	linux kernel (56)	—
8	debian	54	5	·	·	PoC 10	debian linux (54)	—
9	google inc.	54	1	·	·	NEWPoC 2	android (54)	—
10	cisco	35	2	·	·	PoC 2	unified communications manager (5) · secure access control system (4) · secure firewall management center (3)	—
11	сообщество свободного программного обеспечения	31	2	·	1	Nuclei 1PoC 6	linux (18) · debian gnu/linux (14) · busybox (2)	—
12	adobe	24	2	·	·	PoC 4	flash player (13) · flash player desktop runtime (13) · digital editions (9)	—
13	libdwarf project	24	1	·	·	NEW×24.0PoC 5	libdwarf (24)	—
14	moxa	22	5	·	·	×4.4PoC 1	nport p5150a series firmware (8) · nport 6100 series firmware (8) · nport 5x50a1-m12 series firmware (8)	—
15	opensuse	21	2	·	·	PoC 2	leap (16) · opensuse (16)	—
16	fedoraproject	19	5	·	·	PoC 5	fedora (19)	—
17	nvidia	19	·	·	·	×6.3PoC 4	gpu driver (16) · tegra k1 cd570m-a1 (3) · tegra k1 cd580m-a1 (3)	—
18	nvidia corporation	16	·	·	·	NEWPoC 2	windows gpu display driver (10) · gpu display driver (5) · linux gpu display driver (1)	—
19	adobe systems inc.	14	1	·	·	PoC 4	flash player (13) · adobe digital editions (1)	—
20	gstreamer	14	·	·	·		gstreamer (14)	—
21	gnu	12	·	·	·	×6.0PoC 1	libiberty (9) · ed (1) · glibc (1)	—
22	graphicsmagick	12	2	·	·	NEW	graphicsmagick (12)	—
23	netapp	12	3	·	·	×6.0	data ontap (2) · oncommand insight (2) · e-series santricity os controller (1)	—
24	packagist	11	5	·	·	PoC 7	zendframework/zendframework (2) · simplesamlphp/simplesamlphp (2) · movim/moxl (1)	—
25	emc	10	4	·	·	×5.0	documentum d2 (2) · smarts network configuration manager (2) · recoverpoint for virtual machines (2)	—
26	pypi	10	2	·	·	PoC 1	plone (4) · html5lib (2) · pycrypto (1)	—
27	canonical	9	2	·	·	PoC 2	ubuntu linux (9)	—
28	dell	9	3	·	·	×3.0PoC 1	sonicwall secure remote access server (3) · vce vision intelligent operations (2) · bsafe crypto-j (2)	—
29	imagemagick	9	·	·	·	PoC 1	imagemagick (9)	—
30	redhat	9	·	·	·	PoC 2	enterprise linux server aus (7) · enterprise linux desktop (7) · enterprise linux server (7)	—
31	webkitgtk	9	·	·	·	×4.5PoC 5	webkitgtk\+ (9)	—
32	ytnef project	9	·	·	·	NEW	ytnef (9)	—
33	ооо «русбитех-астра»	9	2	·	1	Nuclei 1PoC 5	astra linux special edition (9) · astra linux special edition для «эльбрус» (2)	—
34	schneider-electric	8	3	·	·	PoC 1	magelis xbt gt advanced touchscreen panel firmware (2) · ion5000 (2) · ion7300 (2)	—
35	intel	7	·	·	·	×7.0PoC 2	core i7-3632qm (3) · core i7-4500u (3) · core i7-6700k (3)	—
36	maven	7	·	·	·	PoC 2	com.sonyericsson.jenkins.plugins.bfa:build-failure-analyzer (1) · com.tupilabs.image_gallery:image-gallery (1) · org.jenkins-ci.plugins:extra-columns (1)	—
37	xen	7	·	·	·	×3.5	xen (7)	—
38	facebook	6	6	·	·		hhvm (6)	—
39	freebsd	6	·	·	·	×4.0PoC 1	freebsd (6)	—
40	honeywell	6	3	·	·	×6.0	xl web ii controller (5) · experion process knowledge system (1)	—
41	ibm corp.	6	3	·	·	PoC 1	aix (2) · general parallel file system (1) · bigfix platform (1)	—
42	iceni	6	·	·	·	NEWPoC 1	argus (6)	—
43	libav	6	·	·	·	NEW×6.0PoC 1	libav (6)	—
44	red hat inc.	6	·	·	·		red hat enterprise linux (5) · policykit (1)	—
45	samsung	6	·	·	·	PoC 2	exynos 5800 (3) · samsung mobile (3)	—
46	siemens	6	2	·	·	×3.0	sicam pas\/pqs (2) · ruggedcom network management software (2) · eta2 firmware (1)	—
47	wso2	6	·	·	·	NEWPoC 6	carbon (3) · identity server (2) · enablement server for java (1)	—
48	ооо «юбитех»	6	·	·	·	NEW	ublinux (6)	—
49	advantech	5	2	·	·	×5.0PoC 2	susiaccess (3) · webaccess (2)	—
50	artifex	5	·	·	·	PoC 1	mupdf (3) · mujs (1) · afpl ghostscript (1)	—