month report

March 2025

Data as of Jun 4, 2026, 13:26 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →

March 2025 closed with 4,251 published CVEs — +26.0% YoY . 420 criticals, 32 added to CISA KEV (4 ransomware-linked). сообщество свободного программного обеспечения led volume, mostly via linux. Biggest breakout: ао «сбертех» at ×9.8 their 12-month median. Top weakness class — CWE-79 (854 CVE). 10 vendors cracked the top-100 for the first time.

Print view

Total CVEs

4,251

— MoM+26.0% YoY

Severity mix

420 / 1,461

critical / high

KEV added

4 ransomware-linked

Nuclei coverage

27.4%

1,165 CVEs with templates

Time to exploit

How fast the community ships detection after a CVE drops.

Days → Nuclei (median)

349.3

n=1,165

Within 7 days

0.0%

Within 30 days

0.0%

Days → KEV (median)

n=26

Detection gap

KEV pressure, no Nuclei coverage

March 2025 · vendors with active exploitation listed by CISA but no public detection template.

KEV 8microsoft corp69 CVE
KEV 7microsoft65 CVE
KEV 2ооо «русбитех-астра»173 CVE
KEV 1apple159 CVE
KEV 1ао «сбертех»108 CVE
KEV 1apple inc.62 CVE
KEV 1dlink20 CVE

Weakness × Vendor

What's spreading where in March 2025

Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.

Breakout vendors

CVE count ≥3× their own 12-period median.

9.8×ао «сбертех»108 CVE
6.9×apple inc.62 CVE
6.2×phpgurukul81 CVE
4.0×openatom26 CVE
4.0×openharmony26 CVE
3.9×apple159 CVE
3.8×fortinet44 CVE
3.6×fortinet inc.32 CVE
3.0×novell inc.102 CVE

First time in top-100

Vendors never in top-100 in the prior 24 periods.

#22printerlogic49 CVE
#34drupal30 CVE
#49binary-husky21 CVE
#54open-webui20 CVE
#59openwebui19 CVE
#60palo alto networks inc.19 CVE
#72applio14 CVE
#73assimp14 CVE
#76iahispano14 CVE
#77libming14 CVE

Top vendors

Ranked by distinct CVE count this period.

1сообщество свободного программного обеспечения—
312 CVE14 critCVSS 6.2
KEV 2Nuclei 4PoC 26
linux (200) · debian gnu/linux (140) · webkitgtk (7)
2linux—
207 CVECVSS 5.9
PoC 1
linux (207) · linux kernel (207)
3ооо «ред софт»—
202 CVE4 critCVSS 6.2
KEV 2Nuclei 5PoC 22
ред ос (202)
4ооо «русбитех-астра»—
173 CVE8 critCVSS 6.6
KEV 2PoC 9
astra linux special edition (171) · astra linux common edition (32) · пк "ald pro" (1)
5pypi—
166 CVE33 critCVSS 7.7
Nuclei 4PoC 36
open-webui (21) · aim (12) · h2o (10)
6apple—
159 CVE46 critCVSS 7.0
×3.9KEV 1PoC 1
macos (149) · ipados (73) · ios and ipados (72)
7red hat inc.—
142 CVE2 critCVSS 6.0
PoC 5
red hat enterprise linux (130) · red hat developer hub (4) · logging subsystem for red hat openshift (2)
8ао "нппкт"—
123 CVE7 critCVSS 6.6
KEV 3Nuclei 1PoC 7
осон основа оnyx (123)
9ао «сбертех»—
108 CVECVSS 6.0
×9.8KEV 1PoC 1
platform v sberlinux os server (108)
10novell inc.—
102 CVE2 critCVSS 6.1
×3.0PoC 7
suse linux enterprise server (89) · suse linux enterprise server for sap applications (85) · opensuse leap (51)
11phpgurukul—
81 CVECVSS 6.7
×6.2Nuclei 1PoC 78
bank locker management system (12) · art gallery management system (11) · old age home management system (7)
12canonical ltd.—
79 CVE2 critCVSS 6.2
PoC 2
ubuntu (79)
13unknown—
76 CVE1 critCVSS 5.6
Nuclei 76PoC 76
gdpr cookie compliance (6) · url shortener | conversion tracking | ab testing | woocommerce (3) · product labels for woocommerce (sale badges) (2)
14microsoft corp—
69 CVE1 critCVSS 7.2
KEV 8PoC 3
windows server 2025 (38) · windows server 2022 (37) · windows server 2025 (server core installation) (37)
15microsoft—
65 CVE1 critCVSS 7.2
KEV 7PoC 3
windows server 2025 (35) · windows server 2025 (server core installation) (35) · windows server 2022 23h2 (35)
16maven—
64 CVE8 critCVSS 6.7
KEV 1Nuclei 3PoC 8
ai.h2o:h2o-core (9) · io.github.robothy:local-s3-rest (4) · org.jenkins-ci.main:jenkins-core (4)
17apple inc.—
62 CVE12 critCVSS 6.8
×6.9KEV 1PoC 1
macos (56) · ipados (39) · ios (37)
18packagist—
62 CVE5 critCVSS 6.7
Nuclei 1PoC 15
drupal/core (4) · drupal/ai (4) · laravel/framework (3)
19ао «ивк»—
62 CVE8 critCVSS 6.8
KEV 1Nuclei 1PoC 5
альт сп 10 (56) · альт 8 сп (12)
20go—
60 CVE5 critCVSS 6.4
Nuclei 4PoC 9
github.com/mattermost/mattermost/server/v8 (7) · github.com/ollama/ollama (6) · k8s.io/ingress-nginx (5)
21npm—
52 CVE7 critCVSS 6.5
KEV 1Nuclei 5PoC 10
directus (5) · open-webui (3) · flowise (3)
22printerlogic—
49 CVE36 critCVSS 9.0
NEW
vasion print (49) · virtual appliance (49)
23tenda—
46 CVE10 critCVSS 7.1
PoC 29
fh1202 firmware (8) · fh1202 (8) · rx3 firmware (7)
24fortinet—
44 CVE2 critCVSS 6.6
×3.8
fortios (7) · fortisandbox (7) · fortiweb (6)
25adobe—
43 CVECVSS 7.0
indesign (9) · acrobat dc (9) · acrobat reader (9)
26adobe systems inc.—
43 CVECVSS 7.0
adobe acrobat reader document cloud (9) · adobe acrobat 2024 (9) · adobe acrobat document cloud (9)
27ibm—
39 CVE3 critCVSS 5.7
infosphere information server (5) · urbancode deploy (3) · 4769 developers toolkit (3)
28shenzhen tenda technology co., ltd.—
35 CVE6 critCVSS 7.2
PoC 25
tenda fh1202 (6) · tenda ac9 (5) · tenda tx3 (5)
29code-projects—
33 CVECVSS 5.2
PoC 33
blood bank management system (10) · payroll management system (7) · online class and exam scheduling system (5)
30dell—
32 CVE2 critCVSS 7.6
unity operating environment (15) · unity (15) · smartfabric os10 (11)
31fortinet inc.—
32 CVE2 critCVSS 6.6
×3.6
fortisandbox (6) · fortiweb (5) · fortimail (4)
32google—
31 CVE1 critCVSS 7.1
KEV 1Nuclei 1PoC 1
chrome (15) · android (13) · chromeos (1)
33dell technologies—
30 CVE2 critCVSS 7.7
emc unity operating environment (16) · emc unityvsa operating environment (16) · smartfabric os10 (10)
34drupal—
30 CVE3 critCVSS 6.9
NEW
drupal (4) · ai (artificial intelligence) (4) · drupal core (4)
35samsung—
30 CVECVSS 6.9
notes (19) · wear os (3) · android (3)
36red hat—
28 CVECVSS 6.7
PoC 1
red hat enterprise linux 7 (17) · red hat enterprise linux 8 (17) · red hat enterprise linux 9 (13)
37qualcomm—
27 CVECVSS 7.1
fastconnect 7800 firmware (20) · wcd9380 firmware (19) · qca6696 firmware (19)
38qualcomm, inc.—
27 CVECVSS 7.4
snapdragon (27)
39samsung mobile—
27 CVECVSS 5.6
samsung notes (19) · samsung mobile devices (6) · samsung my files (1)
40openatom—
26 CVECVSS 3.7
×4.0
openharmony (26)
41openharmony—
26 CVECVSS 3.7
×4.0
openharmony (26)
42esri—
25 CVE1 critCVSS 5.4
arcgis server (24) · portal for arcgis (1)
43siemens—
25 CVE2 critCVSS 7.1
tecnomatix plant simulation v2404 (10) · tecnomatix plant simulation v2302 (10) · tecnomatix plant simulation (10)
44siemens ag—
24 CVE1 critCVSS 6.9
tecnomatix plant simulation (10) · teamcenter visualization (8) · scalance lpe9403 (7)
45apache—
23 CVE3 critCVSS 6.4
KEV 1Nuclei 2PoC 3
traffic server (4) · vcl (2) · camel (2)
46apache software foundation—
23 CVE3 critCVSS 6.3
KEV 1Nuclei 2PoC 3
apache traffic server (4) · traffic server (4) · commons vfs (virtual file system) (2)
47lunary—
22 CVE1 critCVSS 7.0
PoC 9
lunary (22)
48lunary-ai—
22 CVE1 critCVSS 7.0
PoC 9
lunary-ai/lunary (22)
49binary-husky—
21 CVECVSS 7.4
NEWNuclei 1PoC 11
gpt academic (21) · binary-husky/gpt_academic (20) · gpt_academic (1)
50dlink—
20 CVE4 critCVSS 5.8
KEV 1PoC 14
dir-618 firmware (8) · dir-605l firmware (8) · dap-1620 firmware (4)

#	Vendor	CVEs	Crit	KEV	Nuclei	Signals	Top products	Δ
1	сообщество свободного программного обеспечения	312	14	2	4	KEV 2Nuclei 4PoC 26	linux (200) · debian gnu/linux (140) · webkitgtk (7)	—
2	linux	207	·	·	·	PoC 1	linux (207) · linux kernel (207)	—
3	ооо «ред софт»	202	4	2	5	KEV 2Nuclei 5PoC 22	ред ос (202)	—
4	ооо «русбитех-астра»	173	8	2	·	KEV 2PoC 9	astra linux special edition (171) · astra linux common edition (32) · пк "ald pro" (1)	—
5	pypi	166	33	·	4	Nuclei 4PoC 36	open-webui (21) · aim (12) · h2o (10)	—
6	apple	159	46	1	·	×3.9KEV 1PoC 1	macos (149) · ipados (73) · ios and ipados (72)	—
7	red hat inc.	142	2	·	·	PoC 5	red hat enterprise linux (130) · red hat developer hub (4) · logging subsystem for red hat openshift (2)	—
8	ао "нппкт"	123	7	3	1	KEV 3Nuclei 1PoC 7	осон основа оnyx (123)	—
9	ао «сбертех»	108	·	1	·	×9.8KEV 1PoC 1	platform v sberlinux os server (108)	—
10	novell inc.	102	2	·	·	×3.0PoC 7	suse linux enterprise server (89) · suse linux enterprise server for sap applications (85) · opensuse leap (51)	—
11	phpgurukul	81	·	·	1	×6.2Nuclei 1PoC 78	bank locker management system (12) · art gallery management system (11) · old age home management system (7)	—
12	canonical ltd.	79	2	·	·	PoC 2	ubuntu (79)	—
13	unknown	76	1	·	76	Nuclei 76PoC 76	gdpr cookie compliance (6) · url shortener \| conversion tracking \| ab testing \| woocommerce (3) · product labels for woocommerce (sale badges) (2)	—
14	microsoft corp	69	1	8	·	KEV 8PoC 3	windows server 2025 (38) · windows server 2022 (37) · windows server 2025 (server core installation) (37)	—
15	microsoft	65	1	7	·	KEV 7PoC 3	windows server 2025 (35) · windows server 2025 (server core installation) (35) · windows server 2022 23h2 (35)	—
16	maven	64	8	1	3	KEV 1Nuclei 3PoC 8	ai.h2o:h2o-core (9) · io.github.robothy:local-s3-rest (4) · org.jenkins-ci.main:jenkins-core (4)	—
17	apple inc.	62	12	1	·	×6.9KEV 1PoC 1	macos (56) · ipados (39) · ios (37)	—
18	packagist	62	5	·	1	Nuclei 1PoC 15	drupal/core (4) · drupal/ai (4) · laravel/framework (3)	—
19	ао «ивк»	62	8	1	1	KEV 1Nuclei 1PoC 5	альт сп 10 (56) · альт 8 сп (12)	—
20	go	60	5	·	4	Nuclei 4PoC 9	github.com/mattermost/mattermost/server/v8 (7) · github.com/ollama/ollama (6) · k8s.io/ingress-nginx (5)	—
21	npm	52	7	1	5	KEV 1Nuclei 5PoC 10	directus (5) · open-webui (3) · flowise (3)	—
22	printerlogic	49	36	·	·	NEW	vasion print (49) · virtual appliance (49)	—
23	tenda	46	10	·	·	PoC 29	fh1202 firmware (8) · fh1202 (8) · rx3 firmware (7)	—
24	fortinet	44	2	·	·	×3.8	fortios (7) · fortisandbox (7) · fortiweb (6)	—
25	adobe	43	·	·	·		indesign (9) · acrobat dc (9) · acrobat reader (9)	—
26	adobe systems inc.	43	·	·	·		adobe acrobat reader document cloud (9) · adobe acrobat 2024 (9) · adobe acrobat document cloud (9)	—
27	ibm	39	3	·	·		infosphere information server (5) · urbancode deploy (3) · 4769 developers toolkit (3)	—
28	shenzhen tenda technology co., ltd.	35	6	·	·	PoC 25	tenda fh1202 (6) · tenda ac9 (5) · tenda tx3 (5)	—
29	code-projects	33	·	·	·	PoC 33	blood bank management system (10) · payroll management system (7) · online class and exam scheduling system (5)	—
30	dell	32	2	·	·		unity operating environment (15) · unity (15) · smartfabric os10 (11)	—
31	fortinet inc.	32	2	·	·	×3.6	fortisandbox (6) · fortiweb (5) · fortimail (4)	—
32	google	31	1	1	1	KEV 1Nuclei 1PoC 1	chrome (15) · android (13) · chromeos (1)	—
33	dell technologies	30	2	·	·		emc unity operating environment (16) · emc unityvsa operating environment (16) · smartfabric os10 (10)	—
34	drupal	30	3	·	·	NEW	drupal (4) · ai (artificial intelligence) (4) · drupal core (4)	—
35	samsung	30	·	·	·		notes (19) · wear os (3) · android (3)	—
36	red hat	28	·	·	·	PoC 1	red hat enterprise linux 7 (17) · red hat enterprise linux 8 (17) · red hat enterprise linux 9 (13)	—
37	qualcomm	27	·	·	·		fastconnect 7800 firmware (20) · wcd9380 firmware (19) · qca6696 firmware (19)	—
38	qualcomm, inc.	27	·	·	·		snapdragon (27)	—
39	samsung mobile	27	·	·	·		samsung notes (19) · samsung mobile devices (6) · samsung my files (1)	—
40	openatom	26	·	·	·	×4.0	openharmony (26)	—
41	openharmony	26	·	·	·	×4.0	openharmony (26)	—
42	esri	25	1	·	·		arcgis server (24) · portal for arcgis (1)	—
43	siemens	25	2	·	·		tecnomatix plant simulation v2404 (10) · tecnomatix plant simulation v2302 (10) · tecnomatix plant simulation (10)	—
44	siemens ag	24	1	·	·		tecnomatix plant simulation (10) · teamcenter visualization (8) · scalance lpe9403 (7)	—
45	apache	23	3	1	2	KEV 1Nuclei 2PoC 3	traffic server (4) · vcl (2) · camel (2)	—
46	apache software foundation	23	3	1	2	KEV 1Nuclei 2PoC 3	apache traffic server (4) · traffic server (4) · commons vfs (virtual file system) (2)	—
47	lunary	22	1	·	·	PoC 9	lunary (22)	—
48	lunary-ai	22	1	·	·	PoC 9	lunary-ai/lunary (22)	—
49	binary-husky	21	·	·	1	NEWNuclei 1PoC 11	gpt academic (21) · binary-husky/gpt_academic (20) · gpt_academic (1)	—
50	dlink	20	4	1	·	KEV 1PoC 14	dir-618 firmware (8) · dir-605l firmware (8) · dap-1620 firmware (4)	—