CVE Tools
Sign in
month report

June 2024

Data as of Jun 4, 2026, 13:25 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →

June 2024 closed with 3,333 published CVEs. 313 criticals, 9 added to CISA KEV (2 ransomware-linked). сообщество свободного программного обеспечения led volume, mostly via linux. Top weakness class — CWE-79 (643 CVE). 10 vendors cracked the top-100 for the first time.

Print view
Total CVEs
3,333
— MoM— YoY
Severity mix
313 / 942
critical / high
KEV added
9
2 ransomware-linked
Nuclei coverage
27.4%
914 CVEs with templates

Time to exploit

How fast the community ships detection after a CVE drops.

Days → Nuclei (median)
634.2
n=914
Within 7 days
0.0%
Within 30 days
0.0%
Days → KEV (median)
58
n=13
Detection gap

KEV pressure, no Nuclei coverage

June 2024 · vendors with active exploitation listed by CISA but no public detection template.

Weakness × Vendor

What's spreading where in June 2024

Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.

79XSS862Missing Authorization89SQL Injection787Out-of-bounds Write22Path Traversal352CSRF476NULL Pointer Dereference125Out-of-bounds Read416Use After Free94Code Injectionсообщество свободного программного обеспечения421836022385ооо «ред софт»3115314416381linux12601829ооо «русбитех-астра»1133314311ао "нппкт"133214302adobe1421113adobe systems inc.1421113packagist4028364red hat inc.5176141canonical ltd.381468pypi9321418unknown541314

First time in top-100

Vendors never in top-100 in the prior 24 periods.

Top vendors

Ranked by distinct CVE count this period.

  • 1сообщество свободного программного обеспечения
    360 CVE16 critCVSS 6.5
    KEV 2Nuclei 3PoC 14
    linux (282) · debian gnu/linux (214) · webkitgtk (5)
  • 2ооо «ред софт»
    286 CVE11 critCVSS 6.6
    KEV 2Nuclei 1PoC 10
    ред ос (286)
  • 3linux
    285 CVE5 critCVSS 6.2
    KEV 1
    linux (285) · linux kernel (285)
  • 4ооо «русбитех-астра»
    227 CVE13 critCVSS 6.8
    KEV 1PoC 6
    astra linux special edition (226) · astra linux common edition (25) · astra linux special edition для «эльбрус» (6)
  • 5ао "нппкт"
    211 CVE12 critCVSS 6.7
    PoC 5
    осон основа оnyx (211)
  • 6adobe
    167 CVE4 critCVSS 5.7
    KEV 1Nuclei 1PoC 1
    experience manager (145) · adobe experience manager (145) · adobe commerce (10)
  • 7adobe systems inc.
    167 CVE4 critCVSS 5.8
    KEV 1Nuclei 1PoC 1
    adobe experience manager (145) · magento open source (10) · adobe commerce (10)
  • 8packagist
    165 CVE2 critCVSS 6.4
    KEV 1Nuclei 3PoC 10
    typo3/cms (62) · zendframework/zendframework1 (20) · zendframework/zendframework (12)
  • 9red hat inc.
    113 CVE5 critCVSS 6.9
    PoC 4
    red hat enterprise linux (108) · red hat satellite (3) · red hat openshift container platform (2)
  • 10canonical ltd.
    94 CVE4 critCVSS 6.3
    KEV 1PoC 4
    ubuntu (82) · apport (8) · snapd (1)
  • 11pypi
    83 CVE15 critCVSS 7.5
    Nuclei 8PoC 15
    mlflow (13) · lollms (8) · zenml (8)
  • 12unknown
    82 CVE3 critCVSS 5.6
    Nuclei 79PoC 81
    arforms - premium wordpress form builder plugin (3) · widget bundle (3) · wp logs book (3)
  • 13microsoft corp
    81 CVE2 critCVSS 7.4
    KEV 3Nuclei 1PoC 4
    microsoft edge (31) · windows server 2019 (server core installation) (30) · windows server 2019 (30)
  • 14google
    79 CVE4 critCVSS 7.4
    KEV 1PoC 2
    android (48) · chrome (26) · nearby (2)
  • 15microsoft
    57 CVE1 critCVSS 7.3
    KEV 2PoC 2
    windows server 2019 (server core installation) (30) · windows server 2019 (30) · windows server 2022 (29)
  • 16ао «ивк»
    53 CVE7 critCVSS 7.2
    KEV 1PoC 2
    альт сп 10 (49) · альт 8 сп (10)
  • 17ibm
    51 CVECVSS 5.9
    infosphere information server (12) · security access manager (7) · mq (5)
  • 18ао «нтц ит роса»
    45 CVE6 critCVSS 7.0
    KEV 1PoC 2
    rosa virtualization 3.0 (44) · rosa virtualization (7) · роса хром (2)
  • 19itsourcecode
    44 CVE2 critCVSS 7.0
    NEWPoC 41
    pool of bethesda online reservation system (4) · tailoring management system (4) · bakery online ordering system (4)
  • 20toshiba tec corporation
    43 CVE6 critCVSS 8.0
    NEWPoC 43
    toshiba tec e-studio multi-function peripheral (mfp) (43) · toshiba e-studio 2510ac series (3) · toshiba e-studio 2520ac series (3)
  • 21apple
    41 CVECVSS 7.0
    macos (33) · iphone os (29) · ios and ipados (29)
  • 22samsung
    40 CVECVSS 6.3
    exynos 1330 firmware (22) · exynos 1380 firmware (22) · exynos 1280 firmware (22)
  • 23dell
    34 CVECVSS 5.9
    data domain operating system (10) · powerprotect dd (10) · cpg bios (8)
  • 24google inc
    34 CVE2 critCVSS 8.2
    KEV 1PoC 3
    google chrome (26) · android (2) · google quick share (2)
  • 25go
    33 CVE3 critCVSS 5.9
    Nuclei 1PoC 3
    github.com/evmos/evmos/v13 (3) · github.com/evmos/evmos/v6 (3) · github.com/evmos/evmos/v7 (3)
  • 26npm
    33 CVE6 critCVSS 6.8
    Nuclei 3PoC 9
    @janhq/core (3) · lunary (3) · tinymce (2)
  • 27maven
    31 CVE8 critCVSS 6.9
    Nuclei 3PoC 6
    com.reposilite:reposilite-backend (3) · org.keycloak:keycloak-services (2) · org.apache.submarine:submarine-server-core (2)
  • 28fedoraproject
    30 CVE1 critCVSS 8.0
    KEV 1Nuclei 1PoC 3
    fedora (30)
  • 29autodesk
    29 CVECVSS 7.8
    NEW
    autocad electrical (29) · autocad map 3d (29) · autocad mechanical (29)
  • 30fedora project
    28 CVECVSS 8.0
    PoC 2
    fedora (28)
  • 31autodesk inc.
    27 CVECVSS 7.8
    NEW
    autocad map 3d (27) · autocad (27) · autocad architecture (27)
  • 32novell inc.
    27 CVE3 critCVSS 6.8
    Nuclei 1PoC 2
    opensuse leap (26) · suse linux enterprise server for sap applications (25) · suse linux enterprise server (25)
  • 33parisneo
    27 CVE11 critCVSS 7.9
    NEWNuclei 2PoC 13
    parisneo/lollms-webui (18) · parisneo/lollms (9) · lollms web ui (1)
  • 34sourcecodester
    24 CVECVSS 6.1
    PoC 24
    food ordering management system (5) · employee and visitor gate pass logging system (4) · simple online bidding system (2)
  • 35ibm corp.
    22 CVECVSS 5.8
    NEW
    infosphere information server (12) · ibm db2 connect server (3) · ibm i (3)
  • 36oretnom23
    22 CVE2 critCVSS 6.3
    PoC 21
    food ordering management system (5) · employee and visitor gate pass logging system (4) · simple online bidding system (2)
  • 37lollms
    21 CVE9 critCVSS 7.8
    NEWNuclei 2PoC 12
    lollms web ui (14) · lollms (4) · lollms-webui (3)
  • 38lunary
    18 CVE2 critCVSS 7.2
    NEWPoC 4
    lunary (18)
  • 39lunary-ai
    18 CVE2 critCVSS 7.2
    NEWPoC 4
    lunary-ai/lunary (18)
  • 40mozilla
    18 CVE3 critCVSS 6.6
    NEWPoC 2
    firefox (18) · firefox esr (8) · thunderbird (8)
  • 41mozilla corp.
    18 CVE3 critCVSS 6.7
    NEWPoC 2
    firefox (18) · firefox esr (8) · thunderbird (8)
  • 42progress
    18 CVE5 critCVSS 7.9
    NEWKEV 1Nuclei 1PoC 3
    whatsup gold (15) · moveit transfer (1) · moveit gateway (1)
  • 43fortinet
    16 CVECVSS 6.3
    NEW
    fortios (5) · fortiwebmanager (4) · fortiproxy (3)
  • 44gitlab
    16 CVE1 critCVSS 6.1
    Nuclei 1PoC 4
    gitlab (16)
  • 45progress software corporation
    16 CVE4 critCVSS 7.8
    NEWKEV 1Nuclei 1PoC 2
    whatsup gold (15) · moveit transfer (1)
  • 46red hat
    15 CVECVSS 7.0
    NEW
    red hat enterprise linux 8 (8) · red hat enterprise linux 9 (8) · red hat enterprise linux 7 (6)
  • 47samsung mobile
    15 CVECVSS 5.9
    samsung mobile devices (13) · galaxybudsmanager pc (1) · samsung live wallpaper pc (1)
  • 48fortinet inc.
    14 CVECVSS 6.3
    NEW
    fortios (5) · fortiweb manager (4) · fortiproxy (3)
  • 49gitlab inc.
    14 CVE1 critCVSS 6.4
    NEWNuclei 1PoC 3
    gitlab (14)
  • 50mintplex-labs
    14 CVE3 critCVSS 7.9
    NEWPoC 7
    mintplex-labs/anything-llm (14)

Top weaknesses

CWE classes by distinct CVE count.

1CWE-79643
2CWE-862311
3CWE-89164
4CWE-787118
5CWE-22104
6CWE-35277
7CWE-47672
8CWE-12570
9CWE-41669
10CWE-9458
11CWE-20057
12CWE-28453
13CWE-43447
14CWE-2046
15CWE-28746
16CWE-7838
17CWE-91837
18CWE-12135
19CWE-50235
20CWE-86335