month report
February 2023
Data as of Jun 4, 2026, 13:25 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →
February 2023 closed with 2,562 published CVEs. 261 criticals, 14 added to CISA KEV (9 ransomware-linked). unknown led volume, mostly via simple urls. Top weakness class — CWE-79 (288 CVE). 10 vendors cracked the top-100 for the first time.
Total CVEs
2,562
— MoM— YoY
Severity mix
261 / 790
critical / high
KEV added
14
9 ransomware-linked
Nuclei coverage
12.1%
310 CVEs with templates
Time to exploit
How fast the community ships detection after a CVE drops.
Days → Nuclei (median)
1117.3
n=310
Within 7 days
0.0%
Within 30 days
0.0%
Days → KEV (median)
4
n=9
Detection gap
KEV pressure, no Nuclei coverage
February 2023 · vendors with active exploitation listed by CISA but no public detection template.
- KEV 4microsoft83 CVE
- KEV 3microsoft corp88 CVE
- KEV 1ао "нппкт"87 CVE
- KEV 1ооо «русбитех-астра»85 CVE
- KEV 1apple56 CVE
Weakness × Vendor
What's spreading where in February 2023
Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.
79XSS787Out-of-bounds Write89SQL Injection77Command Injection125Out-of-bounds Read20Improper Input Validation352CSRF200Information Exposure22Path Traversal284CWE-284unknown2731сообщество свободного программного обеспечения21431124132google1674711microsoft corp722832ао "нппкт"1107411ооо «русбитех-астра»1117431microsoft722932intel12441ооо «ред софт»341143312dell2323115sourcecodester104223packagist2311241
First time in top-100
Vendors never in top-100 in the prior 24 periods.
- #1unknown156 CVE
- #2сообщество свободного программного обеспечения132 CVE
- #3google105 CVE
- #4microsoft corp88 CVE
- #5ао "нппкт"87 CVE
- #6ооо «русбитех-астра»85 CVE
- #7microsoft83 CVE
- #8intel74 CVE
- #9ооо «ред софт»72 CVE
- #10dell68 CVE
Top vendors
Ranked by distinct CVE count this period.
- 156 CVE3 critCVSS 5.8NEWNuclei 156PoC 156simple urls (2) · shoplentor (2) · loan comparison (2)
- 132 CVE6 critCVSS 7.1NEWNuclei 6PoC 29debian gnu/linux (98) · linux (20) · gss-ntlmssp (5)
- 105 CVE1 critCVSS 6.7NEWPoC 1android (87) · chrome (18)
- 88 CVE5 critCVSS 7.8NEWKEV 3PoC 1windows 10 20h2 (36) · windows 10 1809 (36) · windows 10 22h2 (35)
- 87 CVE3 critCVSS 7.2NEWKEV 1PoC 17осон основа оnyx (87)
- 85 CVE2 critCVSS 7.1NEWKEV 1PoC 16astra linux special edition (85) · astra linux common edition (5) · astra linux special edition для «эльбрус» (3)
- 83 CVE7 critCVSS 7.8NEWKEV 4PoC 1windows 10 20h2 (38) · windows 10 1809 (38) · windows 10 22h2 (37)
- 74 CVECVSS 7.0NEWxeon gold 6326 firmware (8) · xeon gold 5318y firmware (8) · xeon gold 5318s firmware (8)
- 72 CVE4 critCVSS 6.8NEWNuclei 2PoC 22ред ос (72)
- 68 CVECVSS 6.2NEWpowerscale onefs (18) · emc powerscale onefs (15) · supportassist for home pcs (8)
- 61 CVECVSS 5.6NEWPoC 37doctors appointment system (7) · music gallery site (6) · online pizza ordering system (5)
- 58 CVE3 critCVSS 6.7NEWNuclei 8PoC 20thorsten/phpmyfaq (10) · wallabag/wallabag (6) · pimcore/pimcore (5)
- 57 CVE4 critCVSS 7.0NEWKEV 1Nuclei 2PoC 11red hat enterprise linux (48) · red hat satellite (5) · red hat 3scale api management platform (4)
- 56 CVE3 critCVSS 6.7NEWKEV 1PoC 2macos (43) · iphone os (30) · ipados (29)
- 50 CVECVSS 5.6NEWsc9863a/sc9832e/sc7731e/t610/t310/t606/t760/t610/t618/t606/t612/t616/t760/t770/t820/s8000 (50)
- 48 CVE6 critCVSS 6.7NEWNuclei 4PoC 6org.jenkins-ci.plugins:azure-credentials (3) · org.jenkins-ci.plugins:synopsys-coverity (3) · org.opennms:opennms (3)
- 45 CVE4 critCVSS 6.8NEWNuclei 2PoC 13sequelize (5) · @sequelize/core (5) · undici (2)
- 45 CVE1 critCVSS 7.6NEWsolid edge se2022 (20) · solid edge se2023 (19) · tecnomatix plant simulation (19)
- 44 CVE10 critCVSS 7.1NEWNuclei 2PoC 6github.com/answerdev/answer (7) · github.com/rancher/rancher (5) · github.com/pion/dtls (2)
- 44 CVE1 critCVSS 7.5NEWsolid edge se2022 (20) · tecnomatix plant simulation (19) · solid edge se2023 (17)
- 42 CVE3 critCVSS 7.0NEWPoC 13альт 8 сп (30) · альт сп 10 (27) · альт рабочая станция к (1)
- 40 CVE2 critCVSS 7.4NEWNuclei 1PoC 10opensuse leap (27) · suse linux enterprise server for sap applications (24) · suse linux enterprise server (23)
- 38 CVE4 critCVSS 6.5NEWNuclei 2fortiweb (18) · fortinac (8) · fortios (7)
- 37 CVE2 critCVSS 5.9NEWKEV 1Nuclei 1PoC 1infosphere information server (5) · sterling b2b integrator standard edition (4) · sterling b2b integrator (4)
- 37 CVE2 critCVSS 6.9NEWPoC 3роса хром (20) · rosa virtualization (14) · rosa virtualization 3.0 (13)
- 36 CVE9 critCVSS 7.7NEWaruba mobility conductor (formerly mobility master); aruba mobility controllers; wlan gateways and sd-wan gateways managed by aruba central (32) · hpe serviceguard for linux (3) · hpe oneview for vmware vcenter, (1)
- 34 CVE4 critCVSS 6.7NEWNuclei 1PoC 8modoboa (3) · cryptography (2) · kiwitcms (2)
- 32 CVE6 critCVSS 7.6NEWarubaos (32) · sd-wan (32)
- 32 CVE6 critCVSS 7.6NEWarubaos (32) · sd-wan (32)
- 32 CVECVSS 5.2NEWsamsung mobile devices (19) · samsung cloud (2) · galaxy store (2)
- 31 CVECVSS 5.2NEWandroid (22) · cloud (2) · flow (2)
- 29 CVE5 critCVSS 6.9NEWen7528, en7580 (6) · mt5221, mt7603, mt7613, mt7615, mt7622, mt7628, mt7629, mt7663, mt7668, mt7682, mt7686, mt7687, mt7697, mt7902, mt7915, mt7916, mt7921, mt7933, mt7981, mt7986, mt8167s, mt8175, mt8362a, mt8365, mt8385, mt8518s, mt8532, mt8695, mt8696, mt8788 (3) · mt6879, mt6895, mt6983 (3)
- 29 CVE28 critCVSS 9.7NEWPoC 26ca300-poe firmware (15) · ca300-poe (11) · t8 firmware (8)
- 28 CVECVSS 7.1NEWNuclei 1PoC 1bridge (7) · framemaker (5) · photoshop (5)
- 28 CVECVSS 7.1NEWNuclei 1PoC 1adobe bridge (7) · adobe framemaker (5) · adobe after effects (4)
- 27 CVECVSS 7.3NEWpowerscale onefs (11) · dell update (3) · alienware update (3)
- 27 CVE4 critCVSS 8.1NEWwcd9380 firmware (24) · wsa8815 firmware (23) · wsa8810 firmware (23)
- 27 CVE4 critCVSS 7.9NEWsnapdragon (27)
- 26 CVE5 critCVSS 7.3NEWharmonyos (16) · emui (15) · bisheng-wnm firmware (5)
- 24 CVE4 critCVSS 7.0NEWNuclei 2fortiweb (15) · fortinac (5) · fortios (4)
- 22 CVECVSS 6.2NEWNuclei 1netweaver application server abap (7) · solution manager (4) · netweaver as abap (bsp framework) (3)
- 21 CVE2 critCVSS 6.9NEWNuclei 1PoC 5fedora (20) · 389 directory server (1)
- 21 CVECVSS 8.2NEWPoC 1google chrome (18) · android (3)
- 19 CVE5 critCVSS 8.5NEWPoC 3dir-605l (10) · dap-1360 (8) · dap-2020 (8)
- 19 CVECVSS 5.4NEWNuclei 19wicked folders (19) · wicked folders – folder organizer for pages, posts, and custom post types (19)
- 18 CVECVSS 6.8NEWPoC 1openssl-src (8) · ckb (2) · deno (2)
- 18 CVECVSS 6.3NEWPoC 2linux kernel (18)
- 18 CVE5 critCVSS 7.3NEWPoC 10simple customer relationship management system (7) · raffle draw system (5) · online eyewear shop (4)
- 17 CVE1 critCVSS 6.6NEWPoC 15ucs central software (3) · ucs 6536 firmware (3) · ucs 6454 firmware (3)
- 17 CVECVSS 7.1NEWbig-ip (14) · big-ip access policy manager (13) · big-ip application security manager (11)
| # | Vendor | CVEs | Crit | KEV | Nuclei | Signals | Top products | Δ | |
|---|---|---|---|---|---|---|---|---|---|
| 1 | unknown | 156 | 3 | · | 156 | NEWNuclei 156PoC 156 | simple urls (2) · shoplentor (2) · loan comparison (2) | — | |
| 2 | сообщество свободного программного обеспечения | 132 | 6 | · | 6 | NEWNuclei 6PoC 29 | debian gnu/linux (98) · linux (20) · gss-ntlmssp (5) | — | |
| 3 | 105 | 1 | · | · | NEWPoC 1 | android (87) · chrome (18) | — | ||
| 4 | microsoft corp | 88 | 5 | 3 | · | NEWKEV 3PoC 1 | windows 10 20h2 (36) · windows 10 1809 (36) · windows 10 22h2 (35) | — | |
| 5 | ао "нппкт" | 87 | 3 | 1 | · | NEWKEV 1PoC 17 | осон основа оnyx (87) | — | |
| 6 | ооо «русбитех-астра» | 85 | 2 | 1 | · | NEWKEV 1PoC 16 | astra linux special edition (85) · astra linux common edition (5) · astra linux special edition для «эльбрус» (3) | — | |
| 7 | microsoft | 83 | 7 | 4 | · | NEWKEV 4PoC 1 | windows 10 20h2 (38) · windows 10 1809 (38) · windows 10 22h2 (37) | — | |
| 8 | intel | 74 | · | · | · | NEW | xeon gold 6326 firmware (8) · xeon gold 5318y firmware (8) · xeon gold 5318s firmware (8) | — | |
| 9 | ооо «ред софт» | 72 | 4 | · | 2 | NEWNuclei 2PoC 22 | ред ос (72) | — | |
| 10 | dell | 68 | · | · | · | NEW | powerscale onefs (18) · emc powerscale onefs (15) · supportassist for home pcs (8) | — | |
| 11 | sourcecodester | 61 | · | · | · | NEWPoC 37 | doctors appointment system (7) · music gallery site (6) · online pizza ordering system (5) | — | |
| 12 | packagist | 58 | 3 | · | 8 | NEWNuclei 8PoC 20 | thorsten/phpmyfaq (10) · wallabag/wallabag (6) · pimcore/pimcore (5) | — | |
| 13 | red hat inc. | 57 | 4 | 1 | 2 | NEWKEV 1Nuclei 2PoC 11 | red hat enterprise linux (48) · red hat satellite (5) · red hat 3scale api management platform (4) | — | |
| 14 | apple | 56 | 3 | 1 | · | NEWKEV 1PoC 2 | macos (43) · iphone os (30) · ipados (29) | — | |
| 15 | unisoc (shanghai) technologies co., ltd. | 50 | · | · | · | NEW | sc9863a/sc9832e/sc7731e/t610/t310/t606/t760/t610/t618/t606/t612/t616/t760/t770/t820/s8000 (50) | — | |
| 16 | maven | 48 | 6 | · | 4 | NEWNuclei 4PoC 6 | org.jenkins-ci.plugins:azure-credentials (3) · org.jenkins-ci.plugins:synopsys-coverity (3) · org.opennms:opennms (3) | — | |
| 17 | npm | 45 | 4 | · | 2 | NEWNuclei 2PoC 13 | sequelize (5) · @sequelize/core (5) · undici (2) | — | |
| 18 | siemens | 45 | 1 | · | · | NEW | solid edge se2022 (20) · solid edge se2023 (19) · tecnomatix plant simulation (19) | — | |
| 19 | go | 44 | 10 | · | 2 | NEWNuclei 2PoC 6 | github.com/answerdev/answer (7) · github.com/rancher/rancher (5) · github.com/pion/dtls (2) | — | |
| 20 | siemens ag | 44 | 1 | · | · | NEW | solid edge se2022 (20) · tecnomatix plant simulation (19) · solid edge se2023 (17) | — | |
| 21 | ао «ивк» | 42 | 3 | · | · | NEWPoC 13 | альт 8 сп (30) · альт сп 10 (27) · альт рабочая станция к (1) | — | |
| 22 | novell inc. | 40 | 2 | · | 1 | NEWNuclei 1PoC 10 | opensuse leap (27) · suse linux enterprise server for sap applications (24) · suse linux enterprise server (23) | — | |
| 23 | fortinet | 38 | 4 | · | 2 | NEWNuclei 2 | fortiweb (18) · fortinac (8) · fortios (7) | — | |
| 24 | ibm | 37 | 2 | 1 | 1 | NEWKEV 1Nuclei 1PoC 1 | infosphere information server (5) · sterling b2b integrator standard edition (4) · sterling b2b integrator (4) | — | |
| 25 | ао «нтц ит роса» | 37 | 2 | · | · | NEWPoC 3 | роса хром (20) · rosa virtualization (14) · rosa virtualization 3.0 (13) | — | |
| 26 | hewlett packard enterprise (hpe) | 36 | 9 | · | · | NEW | aruba mobility conductor (formerly mobility master); aruba mobility controllers; wlan gateways and sd-wan gateways managed by aruba central (32) · hpe serviceguard for linux (3) · hpe oneview for vmware vcenter, (1) | — | |
| 27 | pypi | 34 | 4 | · | 1 | NEWNuclei 1PoC 8 | modoboa (3) · cryptography (2) · kiwitcms (2) | — | |
| 28 | aruba networks | 32 | 6 | · | · | NEW | arubaos (32) · sd-wan (32) | — | |
| 29 | arubanetworks | 32 | 6 | · | · | NEW | arubaos (32) · sd-wan (32) | — | |
| 30 | samsung mobile | 32 | · | · | · | NEW | samsung mobile devices (19) · samsung cloud (2) · galaxy store (2) | — | |
| 31 | samsung | 31 | · | · | · | NEW | android (22) · cloud (2) · flow (2) | — | |
| 32 | mediatek, inc. | 29 | 5 | · | · | NEW | en7528, en7580 (6) · mt5221, mt7603, mt7613, mt7615, mt7622, mt7628, mt7629, mt7663, mt7668, mt7682, mt7686, mt7687, mt7697, mt7902, mt7915, mt7916, mt7921, mt7933, mt7981, mt7986, mt8167s, mt8175, mt8362a, mt8365, mt8385, mt8518s, mt8532, mt8695, mt8696, mt8788 (3) · mt6879, mt6895, mt6983 (3) | — | |
| 33 | totolink | 29 | 28 | · | · | NEWPoC 26 | ca300-poe firmware (15) · ca300-poe (11) · t8 firmware (8) | — | |
| 34 | adobe | 28 | · | · | 1 | NEWNuclei 1PoC 1 | bridge (7) · framemaker (5) · photoshop (5) | — | |
| 35 | adobe systems inc. | 28 | · | · | 1 | NEWNuclei 1PoC 1 | adobe bridge (7) · adobe framemaker (5) · adobe after effects (4) | — | |
| 36 | dell technologies | 27 | · | · | · | NEW | powerscale onefs (11) · dell update (3) · alienware update (3) | — | |
| 37 | qualcomm | 27 | 4 | · | · | NEW | wcd9380 firmware (24) · wsa8815 firmware (23) · wsa8810 firmware (23) | — | |
| 38 | qualcomm, inc. | 27 | 4 | · | · | NEW | snapdragon (27) | — | |
| 39 | huawei | 26 | 5 | · | · | NEW | harmonyos (16) · emui (15) · bisheng-wnm firmware (5) | — | |
| 40 | fortinet inc. | 24 | 4 | · | 2 | NEWNuclei 2 | fortiweb (15) · fortinac (5) · fortios (4) | — | |
| 41 | sap | 22 | · | · | 1 | NEWNuclei 1 | netweaver application server abap (7) · solution manager (4) · netweaver as abap (bsp framework) (3) | — | |
| 42 | fedora project | 21 | 2 | · | 1 | NEWNuclei 1PoC 5 | fedora (20) · 389 directory server (1) | — | |
| 43 | google inc | 21 | · | · | · | NEWPoC 1 | google chrome (18) · android (3) | — | |
| 44 | d-link corp. | 19 | 5 | · | · | NEWPoC 3 | dir-605l (10) · dap-1360 (8) · dap-2020 (8) | — | |
| 45 | wickedplugins | 19 | · | · | 19 | NEWNuclei 19 | wicked folders (19) · wicked folders – folder organizer for pages, posts, and custom post types (19) | — | |
| 46 | crates.io | 18 | · | · | · | NEWPoC 1 | openssl-src (8) · ckb (2) · deno (2) | — | |
| 47 | linux | 18 | · | · | · | NEWPoC 2 | linux kernel (18) | — | |
| 48 | oretnom23 | 18 | 5 | · | · | NEWPoC 10 | simple customer relationship management system (7) · raffle draw system (5) · online eyewear shop (4) | — | |
| 49 | cisco | 17 | 1 | · | · | NEWPoC 15 | ucs central software (3) · ucs 6536 firmware (3) · ucs 6454 firmware (3) | — | |
| 50 | f5 | 17 | · | · | · | NEW | big-ip (14) · big-ip access policy manager (13) · big-ip application security manager (11) | — |