month report

July 2023

Data as of Jun 4, 2026, 13:25 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →

July 2023 closed with 2,380 published CVEs. 275 criticals, 16 added to CISA KEV (4 ransomware-linked). сообщество свободного программного обеспечения led volume, mostly via debian gnu/linux. Top weakness class — CWE-79 (324 CVE). 10 vendors cracked the top-100 for the first time.

Print view

Total CVEs

2,380

— MoM— YoY

Severity mix

275 / 751

critical / high

KEV added

4 ransomware-linked

Nuclei coverage

15.1%

359 CVEs with templates

Time to exploit

How fast the community ships detection after a CVE drops.

Days → Nuclei (median)

968.7

n=359

Within 7 days

0.0%

Within 30 days

0.0%

Days → KEV (median)

n=13

Detection gap

KEV pressure, no Nuclei coverage

July 2023 · vendors with active exploitation listed by CISA but no public detection template.

KEV 5microsoft143 CVE
KEV 5microsoft corp137 CVE
KEV 2apple57 CVE
KEV 2apple inc.48 CVE

Weakness × Vendor

What's spreading where in July 2023

Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.

First time in top-100

Vendors never in top-100 in the prior 24 periods.

#1сообщество свободного программного обеспечения152 CVE
#2google146 CVE
#3microsoft143 CVE
#4microsoft corp137 CVE
#5ооо «русбитех-астра»94 CVE
#6ао "нппкт"87 CVE
#7maven86 CVE
#8ао «ивк»79 CVE
#9ооо «ред софт»76 CVE
#10milesight69 CVE

Top vendors

Ranked by distinct CVE count this period.

1сообщество свободного программного обеспечения—
152 CVE31 critCVSS 7.3
NEWKEV 1Nuclei 4PoC 31
debian gnu/linux (66) · linux (42) · open babel (12)
2google—
146 CVE4 critCVSS 6.6
NEWNuclei 1PoC 12
android (109) · chrome (35) · google wifi (next gen) (1)
3microsoft—
143 CVE5 critCVSS 7.3
NEWKEV 5PoC 8
windows server 2022 (99) · windows server 2019 (95) · windows server 2019 (server core installation) (95)
4microsoft corp—
137 CVE5 critCVSS 7.3
NEWKEV 5PoC 6
windows server 2022 (server core installation) (99) · windows server 2022 (99) · windows server 2019 (server core installation) (95)
5ооо «русбитех-астра»—
94 CVE10 critCVSS 7.2
NEWKEV 1Nuclei 1PoC 15
astra linux special edition (93) · astra linux special edition для «эльбрус» (15) · astra linux common edition (1)
6ао "нппкт"—
87 CVE6 critCVSS 6.7
NEWPoC 14
осон основа оnyx (87)
7maven—
86 CVE21 critCVSS 7.2
NEWNuclei 5PoC 11
com.mabl.integration.jenkins:mabl-integration (4) · org.jenkins-ci.plugins:dimensionsscm (3) · org.apache.pulsar:pulsar-broker (2)
8ао «ивк»—
79 CVE9 critCVSS 6.2
NEWPoC 6
альт сп 10 (74) · альт 8 сп (43) · альт рабочая станция к (6)
9ооо «ред софт»—
76 CVE4 critCVSS 6.5
NEWNuclei 4PoC 22
ред ос (76)
10milesight—
69 CVE1 critCVSS 7.3
NEWPoC 28
ur32l firmware (63) · ur32l (63) · milesightvpn (6)
11unknown—
61 CVE4 critCVSS 6.2
NEWNuclei 59PoC 59
mstore api (4) · an_gradebook (2) · eventon (2)
12unisoc (shanghai) technologies co., ltd.—
59 CVECVSS 5.4
NEW
sc9863a/sc9832e/sc7731e/t610/t310/t606/t760/t610/t618/t606/t612/t616/t760/t770/t820/s8000 (52) · sc9863a/sc9832e/sc7731e/t610/t310/t606/t760/t610/t618/t606/t612/t616/t760/t770/t820/s8001 (2) · sc9863a/sc9832e/sc7731e/t610/t310/t606/t760/t610/t618/t606/t612/t616/t760/t770/t820/s8004 (1)
13apple—
57 CVE5 critCVSS 7.8
NEWKEV 2
macos (53) · ipados (35) · iphone os (35)
14oracle corp.—
57 CVE2 critCVSS 4.9
NEWNuclei 4
mysql server (13) · business intelligence enterprise edition (7) · java se (7)
15oracle—
56 CVE2 critCVSS 4.9
NEWNuclei 4
mysql server (11) · business intelligence (7) · jdk (7)
16oracle corporation—
56 CVE2 critCVSS 5.3
NEWNuclei 4
mysql server (13) · java se jdk and jre (7) · business intelligence enterprise edition (7)
17red hat—
49 CVE2 critCVSS 6.5
NEWPoC 6
red hat enterprise linux 6 (40) · red hat enterprise linux 7 (40) · red hat enterprise linux 9 (38)
18apple inc.—
48 CVE5 critCVSS 7.9
NEWKEV 2
macos (47) · ios (33) · ipados (33)
19fedoraproject—
48 CVE1 critCVSS 6.0
NEWPoC 8
fedora (48) · extra packages for enterprise linux (6)
20ibm—
46 CVECVSS 6.0
NEW
db2 (14) · db2 for linux, unix and windows (13) · cloud pak for data (4)
21pypi—
46 CVE7 critCVSS 6.9
NEWNuclei 3PoC 11
paddlepaddle (5) · apache-airflow (5) · langchain (3)
22ао «нтц ит роса»—
44 CVE4 critCVSS 7.0
NEWPoC 13
роса хром (19) · rosa virtualization 3.0 (16) · роса кобальт (12)
23packagist—
40 CVE2 critCVSS 6.4
NEWNuclei 3PoC 9
pimcore/pimcore (5) · nilsteampassnet/teampass (5) · getkirby/cms (5)
24linux—
39 CVE9 critCVSS 7.4
NEWPoC 10
linux kernel (39) · kernel (4)
25samsung—
39 CVECVSS 5.9
NEWPoC 1
android (31) · pass (3) · smart switch pc (2)
26fedora project—
38 CVECVSS 7.1
NEWPoC 5
fedora (38)
27samsung mobile—
38 CVECVSS 6.4
NEW
samsung mobile devices (31) · samsung pass (3) · calendar (1)
28debian—
37 CVECVSS 6.6
NEWPoC 9
debian linux (37)
29google inc—
35 CVE2 critCVSS 7.2
NEWPoC 11
google chrome (35)
30netapp—
35 CVE8 critCVSS 6.6
NEWPoC 2
active iq unified manager (18) · oncommand insight (16) · h410s (14)
31redhat—
34 CVE1 critCVSS 6.8
NEWPoC 5
enterprise linux (28) · enterprise linux for real time (3) · enterprise linux for real time for nfv (3)
32red hat inc.—
34 CVE2 critCVSS 6.7
NEWPoC 3
red hat enterprise linux (30) · red hat storage (3) · red hat build of quarkus (2)
33jenkins—
32 CVECVSS 6.5
NEWPoC 1
mabl (4) · test results aggregator (2) · benchmark evaluator (2)
34canonical ltd.—
31 CVE2 critCVSS 6.9
NEWNuclei 1PoC 7
ubuntu (31)
35go—
30 CVE3 critCVSS 6.5
NEWNuclei 2PoC 3
github.com/1panel-dev/1panel (3) · github.com/hashicorp/nomad (3) · k8s.io/kubernetes (2)
36huawei—
30 CVE11 critCVSS 8.0
NEW
harmonyos (30) · emui (29)
37jenkins project—
30 CVECVSS 6.5
NEWPoC 1
jenkins mabl plugin (4) · jenkins elasticbox ci plugin (2) · jenkins openshift login plugin (2)
38apache—
29 CVE8 critCVSS 7.8
NEWNuclei 1
airflow (5) · pulsar (4) · inlong (3)
39apache software foundation—
29 CVE8 critCVSS 7.6
NEWNuclei 1
airflow (5) · apache airflow (5) · apache inlong (3)
40npm—
28 CVE6 critCVSS 7.2
NEWNuclei 2PoC 5
@fastify/oauth2 (2) · uptime-kuma (2) · nodebb (2)
41siemens ag—
26 CVE7 critCVSS 8.1
NEW
ruggedcom rox mx5000 (13) · ruggedcom rox rx1500 (13) · ruggedcom rox rx1501 (13)
42siemens—
25 CVE7 critCVSS 8.1
NEW
ruggedcom rox rx1510 (13) · ruggedcom rox mx5000 (13) · ruggedcom rox mx5000 firmware (13)
43mediatek, inc.—
24 CVECVSS 6.6
NEW
mt6580, mt6731, mt6735, mt6737, mt6739, mt6753, mt6757, mt6757c, mt6757cd, mt6757ch, mt6761, mt6762, mt6763, mt6765, mt6768, mt6769, mt6771, mt6779, mt6781, mt6785, mt6789, mt6833, mt6835, mt6853, mt6853t, mt6855, mt6873, mt6875, mt6877, mt6879, mt6883, mt6885, mt6886, mt6889, mt6891, mt6893, mt6895, mt6983, mt6985, mt8185, mt8321, mt8385, mt8666, mt8667, mt8765, mt8766, mt8768, mt8781, mt8786, mt8788, mt8789, mt8791, mt8791t, mt8797 (3) · mt6739, mt6768, mt6771, mt6781, mt6785, mt6833, mt6853, mt6853t, mt6873, mt6877, mt6883, mt6885, mt6889, mt6893, mt8786, mt8789, mt8797 (2) · mt6739, mt8167, mt8168, mt8321, mt8365, mt8385, mt8666, mt8765, mt8788 (2)
44campcodes—
23 CVECVSS 5.3
NEWPoC 22
beauty salon management system (21) · retro cellphone online store (2)
45fedora—
23 CVE2 critCVSS 6.3
NEWPoC 2
fedora (23) · extra packages for enterprise linux (7) · extra packages for enterprise linux 7 (1)
46adobe—
22 CVE2 critCVSS 6.0
NEWKEV 3Nuclei 3
indesign (13) · coldfusion (4) · media encoder (4)
47adobe systems inc.—
22 CVE2 critCVSS 6.0
NEWKEV 3Nuclei 3
adobe indesign (13) · coldfusion (4) · adobe media encoder (4)
48sourcecodester—
22 CVECVSS 6.0
NEWPoC 11
ac repair and services system (6) · lost and found information system (3) · shopping website (3)
49ibm corp.—
21 CVECVSS 6.0
NEW
ibm db2 (13) · ibm db2 connect server (10) · ibm cloud pak for data (cp4d) (4)
50tenda—
20 CVE20 critCVSS 9.8
NEWPoC 11
f1202 firmware (10) · fh1202 firmware (10) · fh1203 firmware (8)

#	Vendor	CVEs	Crit	KEV	Nuclei	Signals	Top products	Δ
1	сообщество свободного программного обеспечения	152	31	1	4	NEWKEV 1Nuclei 4PoC 31	debian gnu/linux (66) · linux (42) · open babel (12)	—
2	google	146	4	·	1	NEWNuclei 1PoC 12	android (109) · chrome (35) · google wifi (next gen) (1)	—
3	microsoft	143	5	5	·	NEWKEV 5PoC 8	windows server 2022 (99) · windows server 2019 (95) · windows server 2019 (server core installation) (95)	—
4	microsoft corp	137	5	5	·	NEWKEV 5PoC 6	windows server 2022 (server core installation) (99) · windows server 2022 (99) · windows server 2019 (server core installation) (95)	—
5	ооо «русбитех-астра»	94	10	1	1	NEWKEV 1Nuclei 1PoC 15	astra linux special edition (93) · astra linux special edition для «эльбрус» (15) · astra linux common edition (1)	—
6	ао "нппкт"	87	6	·	·	NEWPoC 14	осон основа оnyx (87)	—
7	maven	86	21	·	5	NEWNuclei 5PoC 11	com.mabl.integration.jenkins:mabl-integration (4) · org.jenkins-ci.plugins:dimensionsscm (3) · org.apache.pulsar:pulsar-broker (2)	—
8	ао «ивк»	79	9	·	·	NEWPoC 6	альт сп 10 (74) · альт 8 сп (43) · альт рабочая станция к (6)	—
9	ооо «ред софт»	76	4	·	4	NEWNuclei 4PoC 22	ред ос (76)	—
10	milesight	69	1	·	·	NEWPoC 28	ur32l firmware (63) · ur32l (63) · milesightvpn (6)	—
11	unknown	61	4	·	59	NEWNuclei 59PoC 59	mstore api (4) · an_gradebook (2) · eventon (2)	—
12	unisoc (shanghai) technologies co., ltd.	59	·	·	·	NEW	sc9863a/sc9832e/sc7731e/t610/t310/t606/t760/t610/t618/t606/t612/t616/t760/t770/t820/s8000 (52) · sc9863a/sc9832e/sc7731e/t610/t310/t606/t760/t610/t618/t606/t612/t616/t760/t770/t820/s8001 (2) · sc9863a/sc9832e/sc7731e/t610/t310/t606/t760/t610/t618/t606/t612/t616/t760/t770/t820/s8004 (1)	—
13	apple	57	5	2	·	NEWKEV 2	macos (53) · ipados (35) · iphone os (35)	—
14	oracle corp.	57	2	·	4	NEWNuclei 4	mysql server (13) · business intelligence enterprise edition (7) · java se (7)	—
15	oracle	56	2	·	4	NEWNuclei 4	mysql server (11) · business intelligence (7) · jdk (7)	—
16	oracle corporation	56	2	·	4	NEWNuclei 4	mysql server (13) · java se jdk and jre (7) · business intelligence enterprise edition (7)	—
17	red hat	49	2	·	·	NEWPoC 6	red hat enterprise linux 6 (40) · red hat enterprise linux 7 (40) · red hat enterprise linux 9 (38)	—
18	apple inc.	48	5	2	·	NEWKEV 2	macos (47) · ios (33) · ipados (33)	—
19	fedoraproject	48	1	·	·	NEWPoC 8	fedora (48) · extra packages for enterprise linux (6)	—
20	ibm	46	·	·	·	NEW	db2 (14) · db2 for linux, unix and windows (13) · cloud pak for data (4)	—
21	pypi	46	7	·	3	NEWNuclei 3PoC 11	paddlepaddle (5) · apache-airflow (5) · langchain (3)	—
22	ао «нтц ит роса»	44	4	·	·	NEWPoC 13	роса хром (19) · rosa virtualization 3.0 (16) · роса кобальт (12)	—
23	packagist	40	2	·	3	NEWNuclei 3PoC 9	pimcore/pimcore (5) · nilsteampassnet/teampass (5) · getkirby/cms (5)	—
24	linux	39	9	·	·	NEWPoC 10	linux kernel (39) · kernel (4)	—
25	samsung	39	·	·	·	NEWPoC 1	android (31) · pass (3) · smart switch pc (2)	—
26	fedora project	38	·	·	·	NEWPoC 5	fedora (38)	—
27	samsung mobile	38	·	·	·	NEW	samsung mobile devices (31) · samsung pass (3) · calendar (1)	—
28	debian	37	·	·	·	NEWPoC 9	debian linux (37)	—
29	google inc	35	2	·	·	NEWPoC 11	google chrome (35)	—
30	netapp	35	8	·	·	NEWPoC 2	active iq unified manager (18) · oncommand insight (16) · h410s (14)	—
31	redhat	34	1	·	·	NEWPoC 5	enterprise linux (28) · enterprise linux for real time (3) · enterprise linux for real time for nfv (3)	—
32	red hat inc.	34	2	·	·	NEWPoC 3	red hat enterprise linux (30) · red hat storage (3) · red hat build of quarkus (2)	—
33	jenkins	32	·	·	·	NEWPoC 1	mabl (4) · test results aggregator (2) · benchmark evaluator (2)	—
34	canonical ltd.	31	2	·	1	NEWNuclei 1PoC 7	ubuntu (31)	—
35	go	30	3	·	2	NEWNuclei 2PoC 3	github.com/1panel-dev/1panel (3) · github.com/hashicorp/nomad (3) · k8s.io/kubernetes (2)	—
36	huawei	30	11	·	·	NEW	harmonyos (30) · emui (29)	—
37	jenkins project	30	·	·	·	NEWPoC 1	jenkins mabl plugin (4) · jenkins elasticbox ci plugin (2) · jenkins openshift login plugin (2)	—
38	apache	29	8	·	1	NEWNuclei 1	airflow (5) · pulsar (4) · inlong (3)	—
39	apache software foundation	29	8	·	1	NEWNuclei 1	airflow (5) · apache airflow (5) · apache inlong (3)	—
40	npm	28	6	·	2	NEWNuclei 2PoC 5	@fastify/oauth2 (2) · uptime-kuma (2) · nodebb (2)	—
41	siemens ag	26	7	·	·	NEW	ruggedcom rox mx5000 (13) · ruggedcom rox rx1500 (13) · ruggedcom rox rx1501 (13)	—
42	siemens	25	7	·	·	NEW	ruggedcom rox rx1510 (13) · ruggedcom rox mx5000 (13) · ruggedcom rox mx5000 firmware (13)	—
43	mediatek, inc.	24	·	·	·	NEW	mt6580, mt6731, mt6735, mt6737, mt6739, mt6753, mt6757, mt6757c, mt6757cd, mt6757ch, mt6761, mt6762, mt6763, mt6765, mt6768, mt6769, mt6771, mt6779, mt6781, mt6785, mt6789, mt6833, mt6835, mt6853, mt6853t, mt6855, mt6873, mt6875, mt6877, mt6879, mt6883, mt6885, mt6886, mt6889, mt6891, mt6893, mt6895, mt6983, mt6985, mt8185, mt8321, mt8385, mt8666, mt8667, mt8765, mt8766, mt8768, mt8781, mt8786, mt8788, mt8789, mt8791, mt8791t, mt8797 (3) · mt6739, mt6768, mt6771, mt6781, mt6785, mt6833, mt6853, mt6853t, mt6873, mt6877, mt6883, mt6885, mt6889, mt6893, mt8786, mt8789, mt8797 (2) · mt6739, mt8167, mt8168, mt8321, mt8365, mt8385, mt8666, mt8765, mt8788 (2)	—
44	campcodes	23	·	·	·	NEWPoC 22	beauty salon management system (21) · retro cellphone online store (2)	—
45	fedora	23	2	·	·	NEWPoC 2	fedora (23) · extra packages for enterprise linux (7) · extra packages for enterprise linux 7 (1)	—
46	adobe	22	2	3	3	NEWKEV 3Nuclei 3	indesign (13) · coldfusion (4) · media encoder (4)	—
47	adobe systems inc.	22	2	3	3	NEWKEV 3Nuclei 3	adobe indesign (13) · coldfusion (4) · adobe media encoder (4)	—
48	sourcecodester	22	·	·	·	NEWPoC 11	ac repair and services system (6) · lost and found information system (3) · shopping website (3)	—
49	ibm corp.	21	·	·	·	NEW	ibm db2 (13) · ibm db2 connect server (10) · ibm cloud pak for data (cp4d) (4)	—
50	tenda	20	20	·	·	NEWPoC 11	f1202 firmware (10) · fh1202 firmware (10) · fh1203 firmware (8)	—