month report

April 2017

Data as of Jun 4, 2026, 13:25 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →

April 2017 closed with 1,592 published CVEs — +140.8% YoY . 173 criticals, oracle led volume, mostly via mysql. Biggest breakout: apache software foundation at ×18.0 their 12-month median. Top weakness class — CWE-119 (184 CVE). 10 vendors cracked the top-100 for the first time.

Print view

Total CVEs

1,592

— MoM+140.8% YoY

Severity mix

173 / 718

critical / high

KEV added

0 ransomware-linked

Nuclei coverage

1.1%

18 CVEs with templates

Time to exploit

How fast the community ships detection after a CVE drops.

Days → Nuclei (median)

3243.1

n=18

Within 7 days

0.0%

Within 30 days

0.0%

Days → KEV (median)

1871

n=9

Detection gap

KEV pressure, no Nuclei coverage

April 2017 · vendors with active exploitation listed by CISA but no public detection template.

KEV 2сообщество свободного программного обеспечения44 CVE
KEV 2microsoft43 CVE
KEV 2microsoft corporation42 CVE
KEV 2microsoft corp22 CVE
KEV 1google inc72 CVE
KEV 1google67 CVE
KEV 1adobe61 CVE
KEV 1adobe systems inc.58 CVE

Weakness × Vendor

What's spreading where in April 2017

Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.

119Memory Buffer Bounds 200Information Exposure 79XSS 20Improper Input Validation 125Out-of-bounds Read 264CWE-264 787Out-of-bounds Write 284CWE-284 352CSRF 416Use After Free oracle 5 1 1 1 1 oracle corporation 5 1 1 apple 55 12 3 11 4 1 7 apple inc.54 11 3 9 3 1 7 debian 5 1 4 11 10 4 google inc 8 11 1 5 5 1 1 google 8 8 1 1 1 5 3 1 7 huawei 8 7 1 13 8 8 3 adobe 25 1 1 1 12 3 10 linux 12 5 2 3 4 adobe systems inc.25 1 1 12 3 10 imagemagick 1 3 25 4

Breakout vendors

CVE count ≥3× their own 12-period median.

18.0×apache software foundation18 CVE
16.0×trendmicro16 CVE
11.2×oracle202 CVE
11.2×imagemagick56 CVE
11.0×oracle corp.33 CVE
9.0×imagemagick studio llc18 CVE
7.5×moxa15 CVE
7.0×sierrawireless7 CVE
6.5×artifex13 CVE
6.0×nextcloud6 CVE

First time in top-100

Vendors never in top-100 in the prior 24 periods.

#2oracle corporation194 CVE
#14google inc.49 CVE
#18microsoft corporation42 CVE
#24juniper networks23 CVE
#27ibm corporation20 CVE
#40cybozu, inc.11 CVE
#41entropymine11 CVE
#44osram9 CVE
#45podofo project9 CVE
#46tp-link9 CVE

Top vendors

Ranked by distinct CVE count this period.

1oracle—
202 CVE12 critCVSS 7.3
×11.2KEV 2Nuclei 4PoC 13
mysql (24) · webcenter sites (15) · berkeley db (14)
2oracle corporation—
194 CVE7 critCVSS 6.4
NEWKEV 1Nuclei 2PoC 12
mysql server (23) · webcenter sites (15) · oracle berkeley db (14)
3apple—
126 CVE7 critCVSS 7.6
PoC 30
iphone os (87) · mac os x (63) · tvos (57)
4apple inc.—
115 CVE7 critCVSS 7.7
×4.8PoC 29
ios (83) · macos (60) · safari (39)
5debian—
90 CVE8 critCVSS 6.8
KEV 3Nuclei 1PoC 5
debian linux (89) · dpkg (1)
6google inc—
72 CVE11 critCVSS 7.3
KEV 1PoC 4
android (67) · google chrome (3) · grpc (2)
7google—
67 CVE8 critCVSS 7.3
KEV 1PoC 2
android (39) · chrome (27) · skia (1)
8huawei—
64 CVE1 critCVSS 7.3
×3.6PoC 1
p9 firmware (9) · mate 8 firmware (7) · s9300 firmware (6)
9adobe—
61 CVE8 critCVSS 7.1
KEV 1PoC 4
acrobat dc (47) · acrobat reader dc (47) · acrobat (47)
10linux—
60 CVE3 critCVSS 7.0
PoC 4
linux kernel (60)
11adobe systems inc.—
58 CVE7 critCVSS 7.0
KEV 1PoC 3
adobe acrobat document cloud (47) · adobe acrobat (47) · adobe reader (47)
12imagemagick—
56 CVECVSS 6.5
×11.2PoC 5
imagemagick (56)
13redhat—
50 CVE3 critCVSS 6.4
KEV 3Nuclei 2PoC 5
enterprise linux server (34) · enterprise linux desktop (34) · enterprise linux workstation (34)
14google inc.—
49 CVE1 critCVSS 6.8
NEWPoC 4
android (49)
15сообщество свободного программного обеспечения—
44 CVE7 critCVSS 7.3
KEV 2PoC 5
linux (26) · debian gnu/linux (22) · elfutils (2)
16cisco—
43 CVE1 critCVSS 6.9
unified computing system (6) · ios xe (6) · adaptive security appliance software (5)
17microsoft—
43 CVECVSS 6.2
KEV 2PoC 7
windows server 2012 (25) · windows 10 (24) · windows server 2016 (23)
18microsoft corporation—
42 CVECVSS 6.4
NEWKEV 2PoC 7
windows (9) · windows hyper-v (8) · hyper-v (5)
19cybozu—
35 CVE1 critCVSS 5.3
×5.8
garoon (14) · office (13) · mailwise (4)
20oracle corp.—
33 CVE3 critCVSS 8.4
×11.0Nuclei 1PoC 6
mysql (22) · vm virtualbox (3) · solaris (3)
21maven—
31 CVE7 critCVSS 7.8
×3.1KEV 1Nuclei 2PoC 1
mysql:mysql-connector-java (3) · org.apache.tomcat.embed:tomcat-embed-core (2) · org.apache.tomcat:tomcat (2)
22ibm—
30 CVECVSS 6.7
PoC 1
curam social program management (4) · tivoli application dependency discovery manager (3) · cognos business intelligence (3)
23juniper—
23 CVE1 critCVSS 7.0
×3.5
northstar controller (19) · junos (4)
24juniper networks—
23 CVE1 critCVSS 7.0
NEW
northstar controller application (19) · junos os on m/mx platforms where enhanced subscriber management for dhcpv6 subscribers is configured (1) · junos os with bgp enabled (1)
25apache—
22 CVE8 critCVSS 8.2
×3.1KEV 1Nuclei 2PoC 2
tomcat (5) · hadoop (3) · traffic server (2)
26microsoft corp—
22 CVECVSS 7.5
KEV 2PoC 4
windows 10 (8) · windows 8.1 (7) · windows server 2016 (5)
27ibm corporation—
20 CVECVSS 6.0
NEW
cognos tm1 (3) · tivoli application dependency discovery manager (3) · financial transaction manager (2)
28cisco systems inc.—
19 CVE1 critCVSS 7.3
×3.2
cisco ios (6) · unified computing system central (6) · cisco firepower extensible operating system (5)
29apache software foundation—
18 CVE6 critCVSS 8.3
×18.0KEV 1Nuclei 2PoC 1
apache tomcat (5) · tomcat (2) · apache traffic server (2)
30imagemagick studio llc—
18 CVECVSS 6.5
×9.0PoC 2
imagemagick (18)
31pypi—
16 CVE1 critCVSS 6.5
×4.0PoC 1
salt (3) · opencv-python (2) · opencv-contrib-python (2)
32trendmicro—
16 CVE3 critCVSS 8.1
×16.0Nuclei 1PoC 12
threat discovery appliance (12) · interscan web security virtual appliance (3) · interscan messaging security virtual appliance (1)
33moxa—
15 CVE1 critCVSS 6.8
×7.5PoC 9
awk-3131a firmware (12) · awk-3131a series industrial ieee 802.11a/b/g/n wireless ap/bridge/client (11) · mxview (2)
34packagist—
15 CVE2 critCVSS 6.8
Nuclei 2PoC 6
moodle/moodle (4) · mantisbt/mantisbt (2) · nilsteampassnet/teampass (2)
35artifex—
13 CVECVSS 6.5
×6.5KEV 1PoC 6
ghostscript (9) · jbig2dec (3) · mupdf (1)
36canonical—
13 CVE1 critCVSS 7.0
KEV 1Nuclei 1PoC 5
ubuntu linux (13)
37ооо «русбитех-астра»—
13 CVE4 critCVSS 7.0
PoC 1
astra linux special edition (11) · astra linux special edition для «эльбрус» (2) · astra linux common edition (2)
38libtiff—
12 CVECVSS 7.0
×3.0PoC 4
libtiff (12)
39wireshark—
12 CVECVSS 7.4
wireshark (12)
40cybozu, inc.—
11 CVECVSS 4.5
NEW
cybozu garoon (6) · cybozu office (3) · cybozu kunai for android (1)
41entropymine—
11 CVECVSS 6.2
NEW
imageworsener (11)
42qemu—
10 CVECVSS 6.8
qemu (10)
43samsung—
10 CVE1 critCVSS 6.0
×4.0PoC 9
galaxy s6 firmware (7) · galaxy note 3 firmware (5) · galaxy s4 mini firmware (3)
44osram—
9 CVE1 critCVSS 7.5
NEWPoC 5
lightify pro (5) · lightify home (4)
45podofo project—
9 CVECVSS 5.6
NEWPoC 2
podofo (9)
46tp-link—
9 CVE5 critCVSS 8.1
NEWPoC 3
tl-sg108e firmware (5) · c20i firmware (4) · c2 firmware (4)
47joomla—
8 CVECVSS 5.8
joomla\! (8)
48libsndfile project—
8 CVECVSS 6.3
NEWPoC 1
libsndfile (8)
49nvidia corporation—
8 CVECVSS 6.7
android (7) · geforce experience (1)
50sap—
8 CVE4 critCVSS 8.8
netweaver application server java (2) · trex (1) · business intelligence platform (1)

#	Vendor	CVEs	Crit	KEV	Nuclei	Signals	Top products	Δ
1	oracle	202	12	2	4	×11.2KEV 2Nuclei 4PoC 13	mysql (24) · webcenter sites (15) · berkeley db (14)	—
2	oracle corporation	194	7	1	2	NEWKEV 1Nuclei 2PoC 12	mysql server (23) · webcenter sites (15) · oracle berkeley db (14)	—
3	apple	126	7	·	·	PoC 30	iphone os (87) · mac os x (63) · tvos (57)	—
4	apple inc.	115	7	·	·	×4.8PoC 29	ios (83) · macos (60) · safari (39)	—
5	debian	90	8	3	1	KEV 3Nuclei 1PoC 5	debian linux (89) · dpkg (1)	—
6	google inc	72	11	1	·	KEV 1PoC 4	android (67) · google chrome (3) · grpc (2)	—
7	google	67	8	1	·	KEV 1PoC 2	android (39) · chrome (27) · skia (1)	—
8	huawei	64	1	·	·	×3.6PoC 1	p9 firmware (9) · mate 8 firmware (7) · s9300 firmware (6)	—
9	adobe	61	8	1	·	KEV 1PoC 4	acrobat dc (47) · acrobat reader dc (47) · acrobat (47)	—
10	linux	60	3	·	·	PoC 4	linux kernel (60)	—
11	adobe systems inc.	58	7	1	·	KEV 1PoC 3	adobe acrobat document cloud (47) · adobe acrobat (47) · adobe reader (47)	—
12	imagemagick	56	·	·	·	×11.2PoC 5	imagemagick (56)	—
13	redhat	50	3	3	2	KEV 3Nuclei 2PoC 5	enterprise linux server (34) · enterprise linux desktop (34) · enterprise linux workstation (34)	—
14	google inc.	49	1	·	·	NEWPoC 4	android (49)	—
15	сообщество свободного программного обеспечения	44	7	2	·	KEV 2PoC 5	linux (26) · debian gnu/linux (22) · elfutils (2)	—
16	cisco	43	1	·	·		unified computing system (6) · ios xe (6) · adaptive security appliance software (5)	—
17	microsoft	43	·	2	·	KEV 2PoC 7	windows server 2012 (25) · windows 10 (24) · windows server 2016 (23)	—
18	microsoft corporation	42	·	2	·	NEWKEV 2PoC 7	windows (9) · windows hyper-v (8) · hyper-v (5)	—
19	cybozu	35	1	·	·	×5.8	garoon (14) · office (13) · mailwise (4)	—
20	oracle corp.	33	3	·	1	×11.0Nuclei 1PoC 6	mysql (22) · vm virtualbox (3) · solaris (3)	—
21	maven	31	7	1	2	×3.1KEV 1Nuclei 2PoC 1	mysql:mysql-connector-java (3) · org.apache.tomcat.embed:tomcat-embed-core (2) · org.apache.tomcat:tomcat (2)	—
22	ibm	30	·	·	·	PoC 1	curam social program management (4) · tivoli application dependency discovery manager (3) · cognos business intelligence (3)	—
23	juniper	23	1	·	·	×3.5	northstar controller (19) · junos (4)	—
24	juniper networks	23	1	·	·	NEW	northstar controller application (19) · junos os on m/mx platforms where enhanced subscriber management for dhcpv6 subscribers is configured (1) · junos os with bgp enabled (1)	—
25	apache	22	8	1	2	×3.1KEV 1Nuclei 2PoC 2	tomcat (5) · hadoop (3) · traffic server (2)	—
26	microsoft corp	22	·	2	·	KEV 2PoC 4	windows 10 (8) · windows 8.1 (7) · windows server 2016 (5)	—
27	ibm corporation	20	·	·	·	NEW	cognos tm1 (3) · tivoli application dependency discovery manager (3) · financial transaction manager (2)	—
28	cisco systems inc.	19	1	·	·	×3.2	cisco ios (6) · unified computing system central (6) · cisco firepower extensible operating system (5)	—
29	apache software foundation	18	6	1	2	×18.0KEV 1Nuclei 2PoC 1	apache tomcat (5) · tomcat (2) · apache traffic server (2)	—
30	imagemagick studio llc	18	·	·	·	×9.0PoC 2	imagemagick (18)	—
31	pypi	16	1	·	·	×4.0PoC 1	salt (3) · opencv-python (2) · opencv-contrib-python (2)	—
32	trendmicro	16	3	·	1	×16.0Nuclei 1PoC 12	threat discovery appliance (12) · interscan web security virtual appliance (3) · interscan messaging security virtual appliance (1)	—
33	moxa	15	1	·	·	×7.5PoC 9	awk-3131a firmware (12) · awk-3131a series industrial ieee 802.11a/b/g/n wireless ap/bridge/client (11) · mxview (2)	—
34	packagist	15	2	·	2	Nuclei 2PoC 6	moodle/moodle (4) · mantisbt/mantisbt (2) · nilsteampassnet/teampass (2)	—
35	artifex	13	·	1	·	×6.5KEV 1PoC 6	ghostscript (9) · jbig2dec (3) · mupdf (1)	—
36	canonical	13	1	1	1	KEV 1Nuclei 1PoC 5	ubuntu linux (13)	—
37	ооо «русбитех-астра»	13	4	·	·	PoC 1	astra linux special edition (11) · astra linux special edition для «эльбрус» (2) · astra linux common edition (2)	—
38	libtiff	12	·	·	·	×3.0PoC 4	libtiff (12)	—
39	wireshark	12	·	·	·		wireshark (12)	—
40	cybozu, inc.	11	·	·	·	NEW	cybozu garoon (6) · cybozu office (3) · cybozu kunai for android (1)	—
41	entropymine	11	·	·	·	NEW	imageworsener (11)	—
42	qemu	10	·	·	·		qemu (10)	—
43	samsung	10	1	·	·	×4.0PoC 9	galaxy s6 firmware (7) · galaxy note 3 firmware (5) · galaxy s4 mini firmware (3)	—
44	osram	9	1	·	·	NEWPoC 5	lightify pro (5) · lightify home (4)	—
45	podofo project	9	·	·	·	NEWPoC 2	podofo (9)	—
46	tp-link	9	5	·	·	NEWPoC 3	tl-sg108e firmware (5) · c20i firmware (4) · c2 firmware (4)	—
47	joomla	8	·	·	·		joomla\! (8)	—
48	libsndfile project	8	·	·	·	NEWPoC 1	libsndfile (8)	—
49	nvidia corporation	8	·	·	·		android (7) · geforce experience (1)	—
50	sap	8	4	·	·		netweaver application server java (2) · trex (1) · business intelligence platform (1)	—