month report

January 2025

Data as of Jun 4, 2026, 13:26 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →

January 2025 closed with 4,463 published CVEs — +65.4% YoY . 358 criticals, 14 added to CISA KEV (6 ransomware-linked). сообщество свободного программного обеспечения led volume, mostly via linux. Biggest breakout: wavlink at ×12.4 their 12-month median. Top weakness class — CWE-79 (1,069 CVE). 10 vendors cracked the top-100 for the first time.

Print view

Total CVEs

4,463

— MoM+65.4% YoY

Severity mix

358 / 1,457

critical / high

KEV added

6 ransomware-linked

Nuclei coverage

35.2%

1,569 CVEs with templates

Time to exploit

How fast the community ships detection after a CVE drops.

Days → Nuclei (median)

414.0

n=1,569

Within 7 days

0.0%

Within 30 days

0.0%

Days → KEV (median)

n=17

Detection gap

KEV pressure, no Nuclei coverage

January 2025 · vendors with active exploitation listed by CISA but no public detection template.

KEV 3microsoft165 CVE
KEV 3microsoft corp163 CVE
KEV 1ооо «ред софт»195 CVE
KEV 1apple101 CVE
KEV 1apple inc.89 CVE

Weakness × Vendor

What's spreading where in January 2025

Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.

Breakout vendors

CVE count ≥3× their own 12-period median.

12.4×wavlink62 CVE
9.9×apple inc.89 CVE
5.7×ibm corp.88 CVE
4.5×fortinet52 CVE
4.5×fortinet inc.45 CVE
3.8×linksys19 CVE
3.1×acronis14 CVE

First time in top-100

Vendors never in top-100 in the prior 24 periods.

#19drupal74 CVE
#22wavlink62 CVE
#29wegia37 CVE
#33wavlink technology ltd.30 CVE
#34open5gs29 CVE
#37labredescefetrj26 CVE
#46linksys19 CVE
#55iocharger16 CVE
#56seling16 CVE
#63arista networks13 CVE

Top vendors

Ranked by distinct CVE count this period.

1сообщество свободного программного обеспечения—
423 CVE23 critCVSS 6.3
Nuclei 1PoC 27
linux (231) · debian gnu/linux (183) · open5gs (11)
2linux—
223 CVECVSS 5.9
linux (223) · linux kernel (223)
3ооо «русбитех-астра»—
199 CVE8 critCVSS 6.5
PoC 15
astra linux special edition (198) · astra linux common edition (51) · пк "ald pro" (1)
4ао "нппкт"—
195 CVE5 critCVSS 6.3
PoC 13
осон основа оnyx (195)
5ооо «ред софт»—
195 CVE5 critCVSS 6.6
KEV 1PoC 44
ред ос (195)
6microsoft—
165 CVE4 critCVSS 7.2
KEV 3PoC 3
windows server 2022 23h2 (126) · windows server 2022, 23h2 edition (server core installation) (126) · windows server 2025 (125)
7microsoft corp—
163 CVE5 critCVSS 7.3
KEV 3PoC 8
windows server 2022, 23h2 edition (server core installation) (114) · windows server 2025 (113) · windows server 2025 (server core installation) (113)
8canonical ltd.—
134 CVE4 critCVSS 6.0
PoC 4
ubuntu (131) · apport (2) · juju (1)
9ibm—
118 CVE3 critCVSS 5.6
sterling b2b integrator (13) · concert software (6) · concert (6)
10red hat inc.—
115 CVE3 critCVSS 6.5
PoC 4
red hat enterprise linux (107) · red hat openshift container platform (11) · openshift ai (3)
11google—
104 CVE4 critCVSS 7.4
PoC 5
android (84) · chrome (17) · gvisor (2)
12apple—
101 CVE9 critCVSS 6.5
KEV 1PoC 2
macos (92) · ipados (52) · ios and ipados (50)
13apple inc.—
89 CVE8 critCVSS 6.6
×9.9KEV 1PoC 2
macos (86) · ipados (44) · ios (42)
14ibm corp.—
88 CVE3 critCVSS 5.8
×5.7
ibm sterling b2b integrator (7) · ibm concert software (6) · ibm engineering lifecycle optimization - publishing (5)
15oracle corp.—
84 CVE3 critCVSS 5.9
mysql server (30) · jd edwards enterpriseone tools (14) · oracle exadata (4)
16oracle—
83 CVE4 critCVSS 5.8
mysql server (30) · jd edwards enterpriseone tools (14) · mysql cluster (4)
17oracle corporation—
83 CVE4 critCVSS 5.8
mysql server (30) · jd edwards enterpriseone tools (14) · mysql cluster (4)
18novell inc.—
77 CVE4 critCVSS 6.0
PoC 4
opensuse leap (72) · suse linux enterprise server (56) · suse linux enterprise server for sap applications (54)
19drupal—
74 CVE12 critCVSS 6.6
NEW
open social (5) · monster menus (2) · two-factor authentication (tfa) (2)
20ао «ивк»—
73 CVE2 critCVSS 5.9
PoC 6
альт 8 сп (53) · альт сп 10 (30)
21unknown—
66 CVE1 critCVSS 5.8
Nuclei 64PoC 66
email subscribers by icegram express (5) · bulk me now! (3) · dyn business panel (3)
22wavlink—
62 CVE61 critCVSS 9.2
NEW×12.4PoC 40
wavlink ac3000 (62) · wl-wn533a8 firmware (62)
23packagist—
59 CVE2 critCVSS 5.5
KEV 1Nuclei 4PoC 21
phpoffice/phpspreadsheet (8) · phpoffice/phpexcel (8) · librenms/librenms (5)
24fortinet—
52 CVE4 critCVSS 6.3
×4.5KEV 1Nuclei 1
fortimanager (15) · fortios (15) · fortimanager cloud (10)
25code-projects—
50 CVECVSS 5.9
PoC 47
point of sales and inventory management system (9) · online book shop (7) · job recruitment (6)
26go—
49 CVE3 critCVSS 6.6
Nuclei 1PoC 2
github.com/mattermost/mattermost/server/v8 (7) · github.com/t2bot/matrix-media-repo (5) · github.com/go-git/go-git/v5 (2)
27fortinet inc.—
45 CVE4 critCVSS 6.4
×4.5KEV 1Nuclei 1
fortios (16) · fortimanager (14) · fortimanager cloud (9)
28maven—
43 CVE4 critCVSS 6.3
PoC 3
com.ruoyi:ruoyi (3) · org.jboss.hal:hal-console (2) · org.hl7.fhir.publisher:org.hl7.fhir.publisher.core (2)
29wegia—
37 CVE8 critCVSS 7.1
NEWPoC 20
wegia (37)
30linuxfoundation—
30 CVE2 critCVSS 7.1
PoC 9
magma (22) · yocto (8)
31openlink software—
30 CVECVSS 7.5
PoC 30
virtuoso-opensource (30)
32openlinksw—
30 CVECVSS 7.5
PoC 30
virtuoso (30)
33wavlink technology ltd.—
30 CVE30 critCVSS 9.2
NEWPoC 8
wavlink ac3000 (wl-wn533a8) (30)
34open5gs—
29 CVECVSS 7.1
NEWPoC 8
open5gs (29)
35google inc—
28 CVE3 critCVSS 7.9
PoC 3
google chrome (18) · android (10)
36huawei—
28 CVECVSS 5.9
harmonyos (28) · emui (12)
37labredescefetrj—
26 CVE3 critCVSS 6.4
NEWPoC 9
wegia (26)
38red hat—
24 CVE1 critCVSS 6.9
PoC 3
red hat enterprise linux 8 (11) · red hat enterprise linux 10 (11) · red hat enterprise linux 9 (11)
39npm—
23 CVE1 critCVSS 5.9
Nuclei 1PoC 4
directus (2) · @lodestar/reqresp (2) · @fastify/multipart (1)
40pypi—
23 CVE2 critCVSS 7.1
Nuclei 1PoC 1
snowflake-connector-python (3) · asteval (2) · composio-claude (1)
41ivanti—
22 CVE5 critCVSS 8.0
KEV 4Nuclei 4PoC 3
endpoint manager (16) · ivanti endpoint manager (16) · avalanche (3)
42dlink—
21 CVE2 critCVSS 6.7
PoC 19
dir-816 firmware (16) · dir-823x firmware (1) · dir-878 firmware (1)
43d-link corp.—
21 CVE3 critCVSS 6.9
PoC 19
dir-816 a2 (16) · dir-823x (1) · dir-825 rev.b (1)
44monetdb—
20 CVECVSS 7.5
PoC 9
monetdb (20)
45totolink—
20 CVECVSS 8.2
PoC 5
x5000r firmware (15) · x5000r (15) · a6000r firmware (4)
46linksys—
19 CVE3 critCVSS 7.1
NEW×3.8PoC 11
e8450 firmware (10) · e7350 firmware (7) · e5600 firmware (2)
47qualcomm—
19 CVECVSS 7.3
fastconnect 6900 firmware (13) · fastconnect 7800 firmware (13) · wsa8845h firmware (12)
48qualcomm, inc.—
19 CVECVSS 7.2
snapdragon (19)
49tenda—
18 CVE10 critCVSS 8.5
PoC 10
ac18 firmware (9) · ac8 firmware (3) · ac9 firmware (2)
50hcl software—
17 CVECVSS 4.1
dryice myxalytics (11) · bigfix patch management download plug-ins (6)

#	Vendor	CVEs	Crit	KEV	Nuclei	Signals	Top products	Δ
1	сообщество свободного программного обеспечения	423	23	·	1	Nuclei 1PoC 27	linux (231) · debian gnu/linux (183) · open5gs (11)	—
2	linux	223	·	·	·		linux (223) · linux kernel (223)	—
3	ооо «русбитех-астра»	199	8	·	·	PoC 15	astra linux special edition (198) · astra linux common edition (51) · пк "ald pro" (1)	—
4	ао "нппкт"	195	5	·	·	PoC 13	осон основа оnyx (195)	—
5	ооо «ред софт»	195	5	1	·	KEV 1PoC 44	ред ос (195)	—
6	microsoft	165	4	3	·	KEV 3PoC 3	windows server 2022 23h2 (126) · windows server 2022, 23h2 edition (server core installation) (126) · windows server 2025 (125)	—
7	microsoft corp	163	5	3	·	KEV 3PoC 8	windows server 2022, 23h2 edition (server core installation) (114) · windows server 2025 (113) · windows server 2025 (server core installation) (113)	—
8	canonical ltd.	134	4	·	·	PoC 4	ubuntu (131) · apport (2) · juju (1)	—
9	ibm	118	3	·	·		sterling b2b integrator (13) · concert software (6) · concert (6)	—
10	red hat inc.	115	3	·	·	PoC 4	red hat enterprise linux (107) · red hat openshift container platform (11) · openshift ai (3)	—
11	google	104	4	·	·	PoC 5	android (84) · chrome (17) · gvisor (2)	—
12	apple	101	9	1	·	KEV 1PoC 2	macos (92) · ipados (52) · ios and ipados (50)	—
13	apple inc.	89	8	1	·	×9.9KEV 1PoC 2	macos (86) · ipados (44) · ios (42)	—
14	ibm corp.	88	3	·	·	×5.7	ibm sterling b2b integrator (7) · ibm concert software (6) · ibm engineering lifecycle optimization - publishing (5)	—
15	oracle corp.	84	3	·	·		mysql server (30) · jd edwards enterpriseone tools (14) · oracle exadata (4)	—
16	oracle	83	4	·	·		mysql server (30) · jd edwards enterpriseone tools (14) · mysql cluster (4)	—
17	oracle corporation	83	4	·	·		mysql server (30) · jd edwards enterpriseone tools (14) · mysql cluster (4)	—
18	novell inc.	77	4	·	·	PoC 4	opensuse leap (72) · suse linux enterprise server (56) · suse linux enterprise server for sap applications (54)	—
19	drupal	74	12	·	·	NEW	open social (5) · monster menus (2) · two-factor authentication (tfa) (2)	—
20	ао «ивк»	73	2	·	·	PoC 6	альт 8 сп (53) · альт сп 10 (30)	—
21	unknown	66	1	·	64	Nuclei 64PoC 66	email subscribers by icegram express (5) · bulk me now! (3) · dyn business panel (3)	—
22	wavlink	62	61	·	·	NEW×12.4PoC 40	wavlink ac3000 (62) · wl-wn533a8 firmware (62)	—
23	packagist	59	2	1	4	KEV 1Nuclei 4PoC 21	phpoffice/phpspreadsheet (8) · phpoffice/phpexcel (8) · librenms/librenms (5)	—
24	fortinet	52	4	1	1	×4.5KEV 1Nuclei 1	fortimanager (15) · fortios (15) · fortimanager cloud (10)	—
25	code-projects	50	·	·	·	PoC 47	point of sales and inventory management system (9) · online book shop (7) · job recruitment (6)	—
26	go	49	3	·	1	Nuclei 1PoC 2	github.com/mattermost/mattermost/server/v8 (7) · github.com/t2bot/matrix-media-repo (5) · github.com/go-git/go-git/v5 (2)	—
27	fortinet inc.	45	4	1	1	×4.5KEV 1Nuclei 1	fortios (16) · fortimanager (14) · fortimanager cloud (9)	—
28	maven	43	4	·	·	PoC 3	com.ruoyi:ruoyi (3) · org.jboss.hal:hal-console (2) · org.hl7.fhir.publisher:org.hl7.fhir.publisher.core (2)	—
29	wegia	37	8	·	·	NEWPoC 20	wegia (37)	—
30	linuxfoundation	30	2	·	·	PoC 9	magma (22) · yocto (8)	—
31	openlink software	30	·	·	·	PoC 30	virtuoso-opensource (30)	—
32	openlinksw	30	·	·	·	PoC 30	virtuoso (30)	—
33	wavlink technology ltd.	30	30	·	·	NEWPoC 8	wavlink ac3000 (wl-wn533a8) (30)	—
34	open5gs	29	·	·	·	NEWPoC 8	open5gs (29)	—
35	google inc	28	3	·	·	PoC 3	google chrome (18) · android (10)	—
36	huawei	28	·	·	·		harmonyos (28) · emui (12)	—
37	labredescefetrj	26	3	·	·	NEWPoC 9	wegia (26)	—
38	red hat	24	1	·	·	PoC 3	red hat enterprise linux 8 (11) · red hat enterprise linux 10 (11) · red hat enterprise linux 9 (11)	—
39	npm	23	1	·	1	Nuclei 1PoC 4	directus (2) · @lodestar/reqresp (2) · @fastify/multipart (1)	—
40	pypi	23	2	·	1	Nuclei 1PoC 1	snowflake-connector-python (3) · asteval (2) · composio-claude (1)	—
41	ivanti	22	5	4	4	KEV 4Nuclei 4PoC 3	endpoint manager (16) · ivanti endpoint manager (16) · avalanche (3)	—
42	dlink	21	2	·	·	PoC 19	dir-816 firmware (16) · dir-823x firmware (1) · dir-878 firmware (1)	—
43	d-link corp.	21	3	·	·	PoC 19	dir-816 a2 (16) · dir-823x (1) · dir-825 rev.b (1)	—
44	monetdb	20	·	·	·	PoC 9	monetdb (20)	—
45	totolink	20	·	·	·	PoC 5	x5000r firmware (15) · x5000r (15) · a6000r firmware (4)	—
46	linksys	19	3	·	·	NEW×3.8PoC 11	e8450 firmware (10) · e7350 firmware (7) · e5600 firmware (2)	—
47	qualcomm	19	·	·	·		fastconnect 6900 firmware (13) · fastconnect 7800 firmware (13) · wsa8845h firmware (12)	—
48	qualcomm, inc.	19	·	·	·		snapdragon (19)	—
49	tenda	18	10	·	·	PoC 10	ac18 firmware (9) · ac8 firmware (3) · ac9 firmware (2)	—
50	hcl software	17	·	·	·		dryice myxalytics (11) · bigfix patch management download plug-ins (6)	—