month report
September 2023
Data as of Jun 4, 2026, 13:25 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →
September 2023 closed with 2,863 published CVEs. 283 criticals, 19 added to CISA KEV (3 ransomware-linked). google led volume, mostly via android. Top weakness class — CWE-79 (375 CVE). 10 vendors cracked the top-100 for the first time.
Total CVEs
2,863
— MoM— YoY
Severity mix
283 / 777
critical / high
KEV added
19
3 ransomware-linked
Nuclei coverage
9.0%
259 CVEs with templates
Time to exploit
How fast the community ships detection after a CVE drops.
Days → Nuclei (median)
903.8
n=259
Within 7 days
0.0%
Within 30 days
0.0%
Days → KEV (median)
4
n=21
Detection gap
KEV pressure, no Nuclei coverage
September 2023 · vendors with active exploitation listed by CISA but no public detection template.
- KEV 7apple123 CVE
- KEV 6apple inc.39 CVE
- KEV 5microsoft67 CVE
- KEV 5debian54 CVE
- KEV 4google137 CVE
- KEV 4ооо «русбитех-астра»83 CVE
- KEV 3ооо «ред софт»100 CVE
- KEV 3ао "нппкт"88 CVE
Weakness × Vendor
What's spreading where in September 2023
Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.
79XSS89SQL Injection787Out-of-bounds Write862Missing Authorization125Out-of-bounds Read416Use After Free22Path Traversal20Improper Input Validation434Unrestricted File Upload120Buffer Overflowgoogle1264222913сообщество свободного программного обеспечения62141823421apple546110ооо «ред софт»62156104221ао "нппкт"11232011ооо «русбитех-астра»115211fedoraproject9551481microsoft32285adobe5116181022go111421microsoft corp31285maven7563213
First time in top-100
Vendors never in top-100 in the prior 24 periods.
- #1google137 CVE
- #2сообщество свободного программного обеспечения125 CVE
- #3apple123 CVE
- #4ооо «ред софт»100 CVE
- #5ао "нппкт"88 CVE
- #6ооо «русбитех-астра»83 CVE
- #7fedoraproject68 CVE
- #8microsoft67 CVE
- #9adobe64 CVE
- #10go64 CVE
Top vendors
Ranked by distinct CVE count this period.
- 137 CVE1 critCVSS 6.2NEWKEV 4PoC 2android (118) · chrome (18) · libwebp (1)
- 125 CVE13 critCVSS 6.9NEWKEV 3Nuclei 5PoC 32debian gnu/linux (75) · linux (21) · vim (9)
- 123 CVE5 critCVSS 6.3NEWKEV 7macos (107) · ipados (64) · iphone os (64)
- 100 CVE6 critCVSS 6.6NEWKEV 3PoC 12ред ос (100)
- 88 CVE8 critCVSS 6.8NEWKEV 3PoC 14осон основа оnyx (88)
- 83 CVE7 critCVSS 7.0NEWKEV 4PoC 16astra linux special edition (81) · astra linux special edition для «эльбрус» (6) · astra linux common edition (5)
- 68 CVE2 critCVSS 6.5NEWKEV 4Nuclei 3PoC 14fedora (68) · extra packages for enterprise linux (1)
- 67 CVE1 critCVSS 7.3NEWKEV 5PoC 8windows server 2022 (20) · windows 11 21h2 (19) · windows server 2019 (19)
- 64 CVE5 critCVSS 6.8NEWKEV 2Nuclei 1acrobat dc (12) · acrobat reader (12) · acrobat reader dc (12)
- 64 CVE6 critCVSS 6.9NEWKEV 1PoC 9github.com/lf-edge/eve (14) · github.com/mattermost/mattermost-server/v6 (5) · github.com/schollz/croc/v9 (5)
- 63 CVE1 critCVSS 7.3NEWKEV 3PoC 7windows server 2022 (server core installation) (19) · windows server 2022 (19) · windows server 2019 (server core installation) (18)
- 59 CVE6 critCVSS 6.7NEWNuclei 3PoC 4org.jenkins-ci.main:jenkins-core (5) · org.jenkins-ci.plugins:aws-codecommit-trigger (4) · org.jenkins-ci.plugins:jobconfighistory (4)
- 58 CVE3 critCVSS 7.0NEWKEV 2Nuclei 1PoC 1illustrator 2021 (10) · illustrator 2022 (10) · adobe acrobat reader document cloud (10)
- 55 CVE5 critCVSS 6.9NEWKEV 2PoC 5red hat enterprise linux (40) · red hat single sign-on (6) · red hat integration camel quarkus (5)
- 54 CVE3 critCVSS 6.8NEWKEV 5PoC 16debian linux (54)
- 52 CVE28 critCVSS 8.3NEWNuclei 1PoC 27dir-619l firmware (13) · dar-7000 firmware (9) · dar-8000 firmware (8)
- 52 CVE1 critCVSS 6.6NEWPoC 4red hat enterprise linux 9 (24) · red hat enterprise linux 8 (23) · red hat enterprise linux 7 (22)
- 51 CVE7 critCVSS 6.9NEWNuclei 8PoC 25librenms/librenms (7) · gugoan/economizzer (5) · thorsten/phpmyfaq (5)
- 49 CVE25 critCVSS 8.2NEWNuclei 1PoC 27dir-619l (10) · dar-8000 (9) · dar-7000 (8)
- 47 CVE4 critCVSS 6.3NEWKEV 1Nuclei 1PoC 10apache-superset (8) · vyper (5) · zope (2)
- 47 CVE4 critCVSS 7.5NEWKEV 2PoC 12альт сп 10 (47) · альт 8 сп (23)
- 46 CVE1 critCVSS 6.9NEWKEV 1PoC 3enterprise linux (15) · openshift container platform (9) · openstack platform (6)
- 45 CVECVSS 5.6NEWmt2713, mt6895, mt6897, mt6983, mt8188, mt8195, mt8395, mt8781 (4) · mt6895, mt6897, mt6983, mt8188, mt8195, mt8395, mt8781 (4) · mt2713, mt6895, mt6897, mt6983, mt8188, mt8195, mt8395, mt8673 (3)
- 45 CVE4 critCVSS 6.8NEWKEV 2PoC 9роса хром (36) · rosa virtualization 3.0 (11) · rosa virtualization (6)
- 44 CVECVSS 6.1NEWsc7731e/sc9832e/sc9863a/t606/t612/t616/t610/t618 (30) · sc7731e/sc9832e/sc9863a/t310/t606/t612/t616/t610/t618/t760/t770/t820/s8000 (5) · sc9832e/sc9863a/t310/t606/t612/t616/t610/t618/t760/t770/t820/s8000 (2)
- 40 CVE2 critCVSS 6.0NEWNuclei 40PoC 39import xml and rss feeds (2) · tagdiv composer (2) · user activity log (2)
- 39 CVE1 critCVSS 6.5NEWKEV 6ios (36) · ipados (35) · macos (29)
- 36 CVECVSS 5.4NEWPoC 9os commerce (36)
- 36 CVECVSS 5.4NEWPoC 9oscommerce (36)
- 35 CVE2 critCVSS 7.8NEWwcd9380 firmware (32) · wsa8830 firmware (31) · wsa8835 firmware (31)
- 35 CVE2 critCVSS 7.6NEWsnapdragon (35)
- 35 CVECVSS 5.5NEWPoC 31engineers online portal (9) · best courier management system (6) · simple membership system (5)
- 33 CVE2 critCVSS 6.3NEWyocto (27) · edge virtualization engine (5) · nats-server (1)
- 32 CVE1 critCVSS 6.8NEWPoC 11linux kernel (32) · kernel (10) · linux (1)
- 32 CVECVSS 4.8NEWandroid (16) · exynos 2200 firmware (5) · exynos 2100 firmware (5)
- 31 CVE2 critCVSS 6.5NEWKEV 2PoC 31ios xe (8) · cisco ios xe software (8) · cisco sd-wan vmanage (6)
- 30 CVE2 critCVSS 6.1NEWKEV 1PoC 30cisco ios xe (8) · catalyst sd-wan manager (6) · cisco ios xr (5)
- 29 CVE3 critCVSS 7.1NEWKEV 2Nuclei 7PoC 9electron (5) · fuxa-server (3) · @frangoteam/fuxa (2)
- 27 CVECVSS 6.3NEWjenkins (5) · build failure analyzer (4) · aws codecommit trigger (4)
- 27 CVECVSS 6.3NEWjenkins (5) · jenkins job configuration history plugin (4) · jenkins build failure analyzer plugin (4)
- 26 CVE3 critCVSS 7.3NEWKEV 1PoC 4ubuntu (24) · accountservice (1) · snapd (1)
- 26 CVE1 critCVSS 6.3NEWKEV 1Nuclei 2PoC 5fedora (26)
- 26 CVECVSS 4.9NEWPoC 14gitlab (26)
- 25 CVE5 critCVSS 7.1NEWharmonyos (25) · emui (23)
- 25 CVE5 critCVSS 7.5NEWKEV 2PoC 2firefox (24) · thunderbird (19) · firefox esr (17)
- 24 CVE4 critCVSS 7.5NEWKEV 2PoC 2firefox (23) · firefox esr (18) · thunderbird (17)
- 24 CVECVSS 5.2NEWsamsung mobile devices (16) · gallery (2) · packageinstallerchn (1)
- 23 CVE2 critCVSS 6.9NEWNuclei 1PoC 1suse linux enterprise server for sap applications (20) · suse linux enterprise server (20) · suse linux enterprise desktop (13)
- 22 CVECVSS 7.5NEWqms automotive (9) · tecnomatix plant simulation v2302 (8) · tecnomatix plant simulation v2201 (8)
- 22 CVECVSS 7.5NEWqms automotive (9) · jt2go (7) · teamcenter visualization (7)
| # | Vendor | CVEs | Crit | KEV | Nuclei | Signals | Top products | Δ | |
|---|---|---|---|---|---|---|---|---|---|
| 1 | 137 | 1 | 4 | · | NEWKEV 4PoC 2 | android (118) · chrome (18) · libwebp (1) | — | ||
| 2 | сообщество свободного программного обеспечения | 125 | 13 | 3 | 5 | NEWKEV 3Nuclei 5PoC 32 | debian gnu/linux (75) · linux (21) · vim (9) | — | |
| 3 | apple | 123 | 5 | 7 | · | NEWKEV 7 | macos (107) · ipados (64) · iphone os (64) | — | |
| 4 | ооо «ред софт» | 100 | 6 | 3 | · | NEWKEV 3PoC 12 | ред ос (100) | — | |
| 5 | ао "нппкт" | 88 | 8 | 3 | · | NEWKEV 3PoC 14 | осон основа оnyx (88) | — | |
| 6 | ооо «русбитех-астра» | 83 | 7 | 4 | · | NEWKEV 4PoC 16 | astra linux special edition (81) · astra linux special edition для «эльбрус» (6) · astra linux common edition (5) | — | |
| 7 | fedoraproject | 68 | 2 | 4 | 3 | NEWKEV 4Nuclei 3PoC 14 | fedora (68) · extra packages for enterprise linux (1) | — | |
| 8 | microsoft | 67 | 1 | 5 | · | NEWKEV 5PoC 8 | windows server 2022 (20) · windows 11 21h2 (19) · windows server 2019 (19) | — | |
| 9 | adobe | 64 | 5 | 2 | 1 | NEWKEV 2Nuclei 1 | acrobat dc (12) · acrobat reader (12) · acrobat reader dc (12) | — | |
| 10 | go | 64 | 6 | 1 | · | NEWKEV 1PoC 9 | github.com/lf-edge/eve (14) · github.com/mattermost/mattermost-server/v6 (5) · github.com/schollz/croc/v9 (5) | — | |
| 11 | microsoft corp | 63 | 1 | 3 | · | NEWKEV 3PoC 7 | windows server 2022 (server core installation) (19) · windows server 2022 (19) · windows server 2019 (server core installation) (18) | — | |
| 12 | maven | 59 | 6 | · | 3 | NEWNuclei 3PoC 4 | org.jenkins-ci.main:jenkins-core (5) · org.jenkins-ci.plugins:aws-codecommit-trigger (4) · org.jenkins-ci.plugins:jobconfighistory (4) | — | |
| 13 | adobe systems inc. | 58 | 3 | 2 | 1 | NEWKEV 2Nuclei 1PoC 1 | illustrator 2021 (10) · illustrator 2022 (10) · adobe acrobat reader document cloud (10) | — | |
| 14 | red hat inc. | 55 | 5 | 2 | · | NEWKEV 2PoC 5 | red hat enterprise linux (40) · red hat single sign-on (6) · red hat integration camel quarkus (5) | — | |
| 15 | debian | 54 | 3 | 5 | · | NEWKEV 5PoC 16 | debian linux (54) | — | |
| 16 | dlink | 52 | 28 | · | 1 | NEWNuclei 1PoC 27 | dir-619l firmware (13) · dar-7000 firmware (9) · dar-8000 firmware (8) | — | |
| 17 | red hat | 52 | 1 | · | · | NEWPoC 4 | red hat enterprise linux 9 (24) · red hat enterprise linux 8 (23) · red hat enterprise linux 7 (22) | — | |
| 18 | packagist | 51 | 7 | · | 8 | NEWNuclei 8PoC 25 | librenms/librenms (7) · gugoan/economizzer (5) · thorsten/phpmyfaq (5) | — | |
| 19 | d-link corp. | 49 | 25 | · | 1 | NEWNuclei 1PoC 27 | dir-619l (10) · dar-8000 (9) · dar-7000 (8) | — | |
| 20 | pypi | 47 | 4 | 1 | 1 | NEWKEV 1Nuclei 1PoC 10 | apache-superset (8) · vyper (5) · zope (2) | — | |
| 21 | ао «ивк» | 47 | 4 | 2 | · | NEWKEV 2PoC 12 | альт сп 10 (47) · альт 8 сп (23) | — | |
| 22 | redhat | 46 | 1 | 1 | · | NEWKEV 1PoC 3 | enterprise linux (15) · openshift container platform (9) · openstack platform (6) | — | |
| 23 | mediatek, inc. | 45 | · | · | · | NEW | mt2713, mt6895, mt6897, mt6983, mt8188, mt8195, mt8395, mt8781 (4) · mt6895, mt6897, mt6983, mt8188, mt8195, mt8395, mt8781 (4) · mt2713, mt6895, mt6897, mt6983, mt8188, mt8195, mt8395, mt8673 (3) | — | |
| 24 | ао «нтц ит роса» | 45 | 4 | 2 | · | NEWKEV 2PoC 9 | роса хром (36) · rosa virtualization 3.0 (11) · rosa virtualization (6) | — | |
| 25 | unisoc (shanghai) technologies co., ltd. | 44 | · | · | · | NEW | sc7731e/sc9832e/sc9863a/t606/t612/t616/t610/t618 (30) · sc7731e/sc9832e/sc9863a/t310/t606/t612/t616/t610/t618/t760/t770/t820/s8000 (5) · sc9832e/sc9863a/t310/t606/t612/t616/t610/t618/t760/t770/t820/s8000 (2) | — | |
| 26 | unknown | 40 | 2 | · | 40 | NEWNuclei 40PoC 39 | import xml and rss feeds (2) · tagdiv composer (2) · user activity log (2) | — | |
| 27 | apple inc. | 39 | 1 | 6 | · | NEWKEV 6 | ios (36) · ipados (35) · macos (29) | — | |
| 28 | os commerce | 36 | · | · | · | NEWPoC 9 | os commerce (36) | — | |
| 29 | oscommerce | 36 | · | · | · | NEWPoC 9 | oscommerce (36) | — | |
| 30 | qualcomm | 35 | 2 | · | · | NEW | wcd9380 firmware (32) · wsa8830 firmware (31) · wsa8835 firmware (31) | — | |
| 31 | qualcomm, inc. | 35 | 2 | · | · | NEW | snapdragon (35) | — | |
| 32 | sourcecodester | 35 | · | · | · | NEWPoC 31 | engineers online portal (9) · best courier management system (6) · simple membership system (5) | — | |
| 33 | linuxfoundation | 33 | 2 | · | · | NEW | yocto (27) · edge virtualization engine (5) · nats-server (1) | — | |
| 34 | linux | 32 | 1 | · | · | NEWPoC 11 | linux kernel (32) · kernel (10) · linux (1) | — | |
| 35 | samsung | 32 | · | · | · | NEW | android (16) · exynos 2200 firmware (5) · exynos 2100 firmware (5) | — | |
| 36 | cisco | 31 | 2 | 2 | · | NEWKEV 2PoC 31 | ios xe (8) · cisco ios xe software (8) · cisco sd-wan vmanage (6) | — | |
| 37 | cisco systems inc. | 30 | 2 | 1 | · | NEWKEV 1PoC 30 | cisco ios xe (8) · catalyst sd-wan manager (6) · cisco ios xr (5) | — | |
| 38 | npm | 29 | 3 | 2 | 7 | NEWKEV 2Nuclei 7PoC 9 | electron (5) · fuxa-server (3) · @frangoteam/fuxa (2) | — | |
| 39 | jenkins | 27 | · | · | · | NEW | jenkins (5) · build failure analyzer (4) · aws codecommit trigger (4) | — | |
| 40 | jenkins project | 27 | · | · | · | NEW | jenkins (5) · jenkins job configuration history plugin (4) · jenkins build failure analyzer plugin (4) | — | |
| 41 | canonical ltd. | 26 | 3 | 1 | · | NEWKEV 1PoC 4 | ubuntu (24) · accountservice (1) · snapd (1) | — | |
| 42 | fedora project | 26 | 1 | 1 | 2 | NEWKEV 1Nuclei 2PoC 5 | fedora (26) | — | |
| 43 | gitlab | 26 | · | · | · | NEWPoC 14 | gitlab (26) | — | |
| 44 | huawei | 25 | 5 | · | · | NEW | harmonyos (25) · emui (23) | — | |
| 45 | mozilla | 25 | 5 | 2 | · | NEWKEV 2PoC 2 | firefox (24) · thunderbird (19) · firefox esr (17) | — | |
| 46 | mozilla corp. | 24 | 4 | 2 | · | NEWKEV 2PoC 2 | firefox (23) · firefox esr (18) · thunderbird (17) | — | |
| 47 | samsung mobile | 24 | · | · | · | NEW | samsung mobile devices (16) · gallery (2) · packageinstallerchn (1) | — | |
| 48 | novell inc. | 23 | 2 | · | 1 | NEWNuclei 1PoC 1 | suse linux enterprise server for sap applications (20) · suse linux enterprise server (20) · suse linux enterprise desktop (13) | — | |
| 49 | siemens | 22 | · | · | · | NEW | qms automotive (9) · tecnomatix plant simulation v2302 (8) · tecnomatix plant simulation v2201 (8) | — | |
| 50 | siemens ag | 22 | · | · | · | NEW | qms automotive (9) · jt2go (7) · teamcenter visualization (7) | — |