month report

June 2020

Data as of Jun 4, 2026, 13:25 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →

June 2020 closed with 1,894 published CVEs. 213 criticals, mattermost led volume, mostly via mattermost server. Top weakness class — CWE-79 (175 CVE). 10 vendors cracked the top-100 for the first time.

Print view

Total CVEs

1,894

— MoM— YoY

Severity mix

213 / 829

critical / high

KEV added

0 ransomware-linked

Nuclei coverage

4.2%

80 CVEs with templates

Time to exploit

How fast the community ships detection after a CVE drops.

Days → Nuclei (median)

2090.3

n=80

Within 7 days

0.0%

Within 30 days

0.0%

Days → KEV (median)

629

n=10

Detection gap

KEV pressure, no Nuclei coverage

June 2020 · vendors with active exploitation listed by CISA but no public detection template.

KEV 3apple63 CVE
KEV 3apple inc.18 CVE
KEV 1microsoft130 CVE
KEV 1microsoft corp129 CVE
KEV 1cisco systems inc.107 CVE
KEV 1treck20 CVE
KEV 1treck inc.19 CVE

Weakness × Vendor

What's spreading where in June 2020

Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.

First time in top-100

Vendors never in top-100 in the prior 24 periods.

#1mattermost159 CVE
#7adobe systems inc.108 CVE
#17apple63 CVE
#27zyxel39 CVE
#39treck20 CVE
#40gitlab19 CVE
#43treck inc.19 CVE
#44apple inc.18 CVE
#45netgear18 CVE
#47baxter16 CVE

Top vendors

Ranked by distinct CVE count this period.

1mattermost—
159 CVE15 critCVSS 6.5
NEW
mattermost server (142) · mattermost desktop (7) · mattermost mobile (6)
2google—
141 CVE15 critCVSS 6.9
PoC 3
android (122) · chrome (16) · guest-oslogin (3)
3сообщество свободного программного обеспечения—
133 CVE7 critCVSS 6.5
KEV 1Nuclei 11PoC 21
debian gnu/linux (113) · libvncserver (13) · linux (10)
4microsoft—
130 CVECVSS 7.5
KEV 1PoC 6
windows 10 (93) · windows server 2016 (91) · windows 10 version 1903 for x64-based systems (91)
5microsoft corp—
129 CVECVSS 7.6
KEV 1PoC 5
windows 10 1903 (89) · windows 10 2004 (89) · windows 10 1909 (88)
6adobe—
112 CVE11 critCVSS 7.2
acrobat dc (24) · acrobat reader dc (24) · adobe acrobat and reader (24)
7adobe systems inc.—
108 CVE7 critCVSS 7.3
NEW
adobe acrobat 2015 (24) · adobe acrobat document cloud (24) · adobe acrobat reader 2015 (24)
8cisco systems inc.—
107 CVE7 critCVSS 7.0
KEV 1PoC 93
cisco ios xe (27) · cisco ios (18) · cisco small business rv320 (17)
9cisco—
90 CVE3 critCVSS 6.8
PoC 86
ios xe (28) · ios (18) · rv325 firmware (17)
10debian—
90 CVE2 critCVSS 6.1
KEV 1Nuclei 12PoC 13
debian linux (90)
11go—
90 CVE11 critCVSS 6.5
Nuclei 4PoC 4
github.com/mattermost/mattermost-server (62) · github.com/grafana/grafana (4) · github.com/hashicorp/consul (4)
12ооо «русбитех-астра»—
86 CVE3 critCVSS 6.2
Nuclei 4PoC 11
astra linux special edition (76) · astra linux special edition для «эльбрус» (49) · astra linux common edition (46)
13fedoraproject—
82 CVE5 critCVSS 6.2
KEV 1Nuclei 9PoC 7
fedora (82)
14opensuse—
80 CVE7 critCVSS 6.6
Nuclei 4PoC 14
leap (77) · backports sle (7) · opensuse leap 15.1 (4)
15canonical—
76 CVE1 critCVSS 5.9
Nuclei 3PoC 12
ubuntu linux (76)
16ао «концерн вниинс»—
66 CVE3 critCVSS 6.3
Nuclei 3PoC 9
ос он «стрелец» (66)
17apple—
63 CVE2 critCVSS 7.5
NEWKEV 3
macos (45) · iphone os (44) · ipados (44)
18novell inc.—
56 CVE3 critCVSS 6.6
Nuclei 3PoC 8
opensuse leap (37) · suse linux enterprise server (22) · suse linux enterprise server for sap applications (17)
19ibm—
53 CVE7 critCVSS 7.0
security guardium (10) · spectrum protect plus (6) · security secret server (6)
20foxitsoftware—
48 CVE9 critCVSS 7.7
phantompdf (41) · reader (25) · foxit studio photo (3)
21packagist—
47 CVE12 critCVSS 7.8
Nuclei 3PoC 14
magento/community-edition (16) · magento/core (16) · magento/project-community-edition (14)
22qualcomm—
45 CVE13 critCVSS 8.3
qcs605 firmware (35) · sm8150 firmware (35) · sdm845 firmware (32)
23qualcomm, inc.—
45 CVE13 critCVSS 8.1
snapdragon auto, snapdragon compute, snapdragon connectivity, snapdragon consumer iot, snapdragon industrial iot, snapdragon mobile, snapdragon voice & music, snapdragon wearables (6) · snapdragon auto, snapdragon compute, snapdragon connectivity, snapdragon consumer iot, snapdragon industrial iot, snapdragon mobile, snapdragon voice & music, snapdragon wired infrastructure and networking (4) · snapdragon auto, snapdragon compute, snapdragon consumer iot, snapdragon industrial iot, snapdragon iot, snapdragon mobile, snapdragon voice & music, snapdragon wearables (4)
24ао "нппкт"—
43 CVE1 critCVSS 5.9
PoC 8
осон основа оnyx (43)
25canonical ltd.—
41 CVE2 critCVSS 6.0
Nuclei 3PoC 4
ubuntu (41)
26fedora project—
41 CVE2 critCVSS 6.0
KEV 1Nuclei 7PoC 4
fedora (41)
27zyxel—
39 CVE9 critCVSS 6.9
NEWPoC 20
cloudcnm secumanager (35) · cloud cnm secumanager (2) · amg1202-t10b (1)
28ао «ивк»—
39 CVECVSS 6.0
Nuclei 1PoC 4
альт 8 сп (38) · альт сп 10 (1)
29red hat inc.—
38 CVE3 critCVSS 7.1
Nuclei 1PoC 4
red hat enterprise linux (22) · red hat satellite (6) · red hat descision manager (4)
30maven—
37 CVE6 critCVSS 7.3
KEV 1Nuclei 6PoC 1
com.fasterxml.jackson.core:jackson-databind (5) · org.jenkins-ci.plugins:swarm (2) · com.liferay.portal:release.dxp.bom (2)
31intel corp.—
32 CVE2 critCVSS 6.5
Nuclei 6
active management technology (11) · thunderbolt (7) · intel converged security and manageability engine (7)
32netapp—
31 CVE2 critCVSS 5.9
Nuclei 3PoC 3
steelstore cloud integrated storage (15) · active iq unified manager (10) · cloud backup (5)
33npm—
28 CVE7 critCVSS 7.4
Nuclei 1PoC 8
jsrsasign (4) · apollo-server (1) · apollo-server-azure-functions (1)
34intel—
25 CVE2 critCVSS 6.0
Nuclei 6
active management technology firmware (11) · converged security management engine firmware (7) · service manager (4)
35oracle—
22 CVE1 critCVSS 7.5
Nuclei 3PoC 2
communications diameter signaling router (7) · zfs storage appliance kit (5) · banking digital experience (4)
36schneider-electric—
21 CVE5 critCVSS 8.0
easergy t300 firmware (11) · ecostruxure operator terminal expert (4) · mtn6260-0410 firmware (2)
37atlassian—
20 CVE1 critCVSS 5.7
jira (10) · jira server (9) · jira software data center (9)
38oracle corp.—
20 CVE1 critCVSS 6.9
Nuclei 3PoC 2
sun zfs storage appliance kit (8) · enterprise manager ops center (7) · hyperion infrastructure technology (5)
39treck—
20 CVE4 critCVSS 6.6
NEWKEV 1PoC 9
tcp\/ip (20)
40gitlab—
19 CVECVSS 6.5
NEWNuclei 3
gitlab (18) · gitlab-vscode-extension (1)
41pypi—
19 CVE2 critCVSS 6.8
Nuclei 2
pillow (5) · django (2) · django-basic-auth-ip-whitelist (1)
42siemens—
19 CVE2 critCVSS 6.8
simatic itc1500 firmware (12) · simatic itc1500 pro firmware (12) · simatic itc1900 pro firmware (12)
43treck inc.—
19 CVE4 critCVSS 6.7
NEWKEV 1PoC 9
treck tcp/ip (19)
44apple inc.—
18 CVE1 critCVSS 8.1
NEWKEV 3
ipados (17) · watchos (17) · ios (17)
45netgear—
18 CVECVSS 8.5
NEWPoC 1
rbk852 firmware (16) · rbk752 firmware (16) · rbk853 firmware (16)
46schneider electric—
17 CVE4 critCVSS 8.2
easergy t300 (hu250) (11) · mtn6260-0410 (2) · mtn6501-0001 (2)
47baxter—
16 CVE7 critCVSS 7.5
NEW
em1200 firmware (6) · em2400 firmware (6) · sigma spectrum infusion system firmware (6)
48magento—
16 CVE10 critCVSS 8.6
NEW
magento (16)
49redhat—
16 CVECVSS 6.6
PoC 2
enterprise linux (4) · openshift container platform (3) · keycloak (1)
50huawei—
13 CVE1 critCVSS 5.7
PoC 1
p30 firmware (3) · secospace usg6600 firmware (3) · nip6800 firmware (2)

#	Vendor	CVEs	Crit	KEV	Nuclei	Signals	Top products	Δ
1	mattermost	159	15	·	·	NEW	mattermost server (142) · mattermost desktop (7) · mattermost mobile (6)	—
2	google	141	15	·	·	PoC 3	android (122) · chrome (16) · guest-oslogin (3)	—
3	сообщество свободного программного обеспечения	133	7	1	11	KEV 1Nuclei 11PoC 21	debian gnu/linux (113) · libvncserver (13) · linux (10)	—
4	microsoft	130	·	1	·	KEV 1PoC 6	windows 10 (93) · windows server 2016 (91) · windows 10 version 1903 for x64-based systems (91)	—
5	microsoft corp	129	·	1	·	KEV 1PoC 5	windows 10 1903 (89) · windows 10 2004 (89) · windows 10 1909 (88)	—
6	adobe	112	11	·	·		acrobat dc (24) · acrobat reader dc (24) · adobe acrobat and reader (24)	—
7	adobe systems inc.	108	7	·	·	NEW	adobe acrobat 2015 (24) · adobe acrobat document cloud (24) · adobe acrobat reader 2015 (24)	—
8	cisco systems inc.	107	7	1	·	KEV 1PoC 93	cisco ios xe (27) · cisco ios (18) · cisco small business rv320 (17)	—
9	cisco	90	3	·	·	PoC 86	ios xe (28) · ios (18) · rv325 firmware (17)	—
10	debian	90	2	1	12	KEV 1Nuclei 12PoC 13	debian linux (90)	—
11	go	90	11	·	4	Nuclei 4PoC 4	github.com/mattermost/mattermost-server (62) · github.com/grafana/grafana (4) · github.com/hashicorp/consul (4)	—
12	ооо «русбитех-астра»	86	3	·	4	Nuclei 4PoC 11	astra linux special edition (76) · astra linux special edition для «эльбрус» (49) · astra linux common edition (46)	—
13	fedoraproject	82	5	1	9	KEV 1Nuclei 9PoC 7	fedora (82)	—
14	opensuse	80	7	·	4	Nuclei 4PoC 14	leap (77) · backports sle (7) · opensuse leap 15.1 (4)	—
15	canonical	76	1	·	3	Nuclei 3PoC 12	ubuntu linux (76)	—
16	ао «концерн вниинс»	66	3	·	3	Nuclei 3PoC 9	ос он «стрелец» (66)	—
17	apple	63	2	3	·	NEWKEV 3	macos (45) · iphone os (44) · ipados (44)	—
18	novell inc.	56	3	·	3	Nuclei 3PoC 8	opensuse leap (37) · suse linux enterprise server (22) · suse linux enterprise server for sap applications (17)	—
19	ibm	53	7	·	·		security guardium (10) · spectrum protect plus (6) · security secret server (6)	—
20	foxitsoftware	48	9	·	·		phantompdf (41) · reader (25) · foxit studio photo (3)	—
21	packagist	47	12	·	3	Nuclei 3PoC 14	magento/community-edition (16) · magento/core (16) · magento/project-community-edition (14)	—
22	qualcomm	45	13	·	·		qcs605 firmware (35) · sm8150 firmware (35) · sdm845 firmware (32)	—
23	qualcomm, inc.	45	13	·	·		snapdragon auto, snapdragon compute, snapdragon connectivity, snapdragon consumer iot, snapdragon industrial iot, snapdragon mobile, snapdragon voice & music, snapdragon wearables (6) · snapdragon auto, snapdragon compute, snapdragon connectivity, snapdragon consumer iot, snapdragon industrial iot, snapdragon mobile, snapdragon voice & music, snapdragon wired infrastructure and networking (4) · snapdragon auto, snapdragon compute, snapdragon consumer iot, snapdragon industrial iot, snapdragon iot, snapdragon mobile, snapdragon voice & music, snapdragon wearables (4)	—
24	ао "нппкт"	43	1	·	·	PoC 8	осон основа оnyx (43)	—
25	canonical ltd.	41	2	·	3	Nuclei 3PoC 4	ubuntu (41)	—
26	fedora project	41	2	1	7	KEV 1Nuclei 7PoC 4	fedora (41)	—
27	zyxel	39	9	·	·	NEWPoC 20	cloudcnm secumanager (35) · cloud cnm secumanager (2) · amg1202-t10b (1)	—
28	ао «ивк»	39	·	·	1	Nuclei 1PoC 4	альт 8 сп (38) · альт сп 10 (1)	—
29	red hat inc.	38	3	·	1	Nuclei 1PoC 4	red hat enterprise linux (22) · red hat satellite (6) · red hat descision manager (4)	—
30	maven	37	6	1	6	KEV 1Nuclei 6PoC 1	com.fasterxml.jackson.core:jackson-databind (5) · org.jenkins-ci.plugins:swarm (2) · com.liferay.portal:release.dxp.bom (2)	—
31	intel corp.	32	2	·	6	Nuclei 6	active management technology (11) · thunderbolt (7) · intel converged security and manageability engine (7)	—
32	netapp	31	2	·	3	Nuclei 3PoC 3	steelstore cloud integrated storage (15) · active iq unified manager (10) · cloud backup (5)	—
33	npm	28	7	·	1	Nuclei 1PoC 8	jsrsasign (4) · apollo-server (1) · apollo-server-azure-functions (1)	—
34	intel	25	2	·	6	Nuclei 6	active management technology firmware (11) · converged security management engine firmware (7) · service manager (4)	—
35	oracle	22	1	·	3	Nuclei 3PoC 2	communications diameter signaling router (7) · zfs storage appliance kit (5) · banking digital experience (4)	—
36	schneider-electric	21	5	·	·		easergy t300 firmware (11) · ecostruxure operator terminal expert (4) · mtn6260-0410 firmware (2)	—
37	atlassian	20	1	·	·		jira (10) · jira server (9) · jira software data center (9)	—
38	oracle corp.	20	1	·	3	Nuclei 3PoC 2	sun zfs storage appliance kit (8) · enterprise manager ops center (7) · hyperion infrastructure technology (5)	—
39	treck	20	4	1	·	NEWKEV 1PoC 9	tcp\/ip (20)	—
40	gitlab	19	·	·	3	NEWNuclei 3	gitlab (18) · gitlab-vscode-extension (1)	—
41	pypi	19	2	·	2	Nuclei 2	pillow (5) · django (2) · django-basic-auth-ip-whitelist (1)	—
42	siemens	19	2	·	·		simatic itc1500 firmware (12) · simatic itc1500 pro firmware (12) · simatic itc1900 pro firmware (12)	—
43	treck inc.	19	4	1	·	NEWKEV 1PoC 9	treck tcp/ip (19)	—
44	apple inc.	18	1	3	·	NEWKEV 3	ipados (17) · watchos (17) · ios (17)	—
45	netgear	18	·	·	·	NEWPoC 1	rbk852 firmware (16) · rbk752 firmware (16) · rbk853 firmware (16)	—
46	schneider electric	17	4	·	·		easergy t300 (hu250) (11) · mtn6260-0410 (2) · mtn6501-0001 (2)	—
47	baxter	16	7	·	·	NEW	em1200 firmware (6) · em2400 firmware (6) · sigma spectrum infusion system firmware (6)	—
48	magento	16	10	·	·	NEW	magento (16)	—
49	redhat	16	·	·	·	PoC 2	enterprise linux (4) · openshift container platform (3) · keycloak (1)	—
50	huawei	13	1	·	·	PoC 1	p30 firmware (3) · secospace usg6600 firmware (3) · nip6800 firmware (2)	—