month report

May 2025

Data as of Jun 4, 2026, 13:26 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →

May 2025 closed with 4,361 published CVEs — -19.5% YoY . 376 criticals, 24 added to CISA KEV. linux led volume, mostly via linux kernel. Biggest breakout: debian at ×11.2 their 12-month median. Top weakness class — CWE-79 (607 CVE). 10 vendors cracked the top-100 for the first time.

Print view

Total CVEs

4,361

— MoM-19.5% YoY

Severity mix

376 / 1,372

critical / high

KEV added

0 ransomware-linked

Nuclei coverage

21.9%

953 CVEs with templates

Time to exploit

How fast the community ships detection after a CVE drops.

Days → Nuclei (median)

295.0

n=953

Within 7 days

0.0%

Within 30 days

0.0%

Days → KEV (median)

n=19

Detection gap

KEV pressure, no Nuclei coverage

May 2025 · vendors with active exploitation listed by CISA but no public detection template.

KEV 5microsoft corp84 CVE
KEV 5microsoft80 CVE

Weakness × Vendor

What's spreading where in May 2025

Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.

Breakout vendors

CVE count ≥3× their own 12-period median.

11.2×debian145 CVE
9.6×ао «сбертех»153 CVE
9.4×phpgurukul122 CVE
5.2×abb31 CVE
3.3×code-projects23 CVE

First time in top-100

Vendors never in top-100 in the prior 24 periods.

#39freefloat33 CVE
#41abb31 CVE
#46pcman25 CVE
#47freescout24 CVE
#48freescout-help-desk24 CVE
#53ооо "ивс"20 CVE
#60drupal16 CVE
#62mojoomla16 CVE
#63admerc15 CVE
#67planet15 CVE

Top vendors

Ranked by distinct CVE count this period.

1linux—
550 CVECVSS 6.0
PoC 4
linux kernel (550) · linux (549)
2сообщество свободного программного обеспечения—
502 CVE9 critCVSS 6.2
Nuclei 2PoC 36
linux (397) · debian gnu/linux (226) · freescout (24)
3ооо «ред софт»—
288 CVE4 critCVSS 6.1
Nuclei 1PoC 18
ред ос (288)
4ооо «русбитех-астра»—
288 CVE4 critCVSS 6.2
Nuclei 1PoC 17
astra linux special edition (287) · astra linux common edition (46) · пк "ald pro" (1)
5ао "нппкт"—
240 CVE4 critCVSS 6.3
PoC 13
осон основа оnyx (240)
6unknown—
226 CVE5 critCVSS 5.4
Nuclei 225PoC 226
illi link party! (4) · ekc tournament manager (3) · wp maps (3)
7canonical ltd.—
217 CVECVSS 6.1
PoC 9
ubuntu (217) · apport (1)
8red hat inc.—
206 CVE1 critCVSS 6.3
Nuclei 1PoC 12
red hat enterprise linux (204) · red hat openshift container platform (6) · red hat satellite (4)
9ао «сбертех»—
153 CVECVSS 6.1
×9.6PoC 7
platform v sberlinux os server (152) · субд «platform v pangolin db» (2)
10debian—
145 CVECVSS 6.1
×11.2PoC 4
debian linux (144) · trixie (1)
11phpgurukul—
122 CVE3 critCVSS 7.0
×9.4PoC 117
park ticketing management system (7) · company visitor management system (6) · news portal project (6)
12microsoft corp—
84 CVE5 critCVSS 7.1
KEV 5PoC 4
windows server 2022, 23h2 edition (server core installation) (40) · windows server 2025 (server core installation) (40) · windows server 2025 (40)
13microsoft—
80 CVE5 critCVSS 7.2
KEV 5PoC 3
windows server 2022, 23h2 edition (server core installation) (40) · windows server 2022 23h2 (40) · windows server 2025 (server core installation) (38)
14apple—
77 CVE4 critCVSS 6.5
macos (66) · ipados (46) · ios and ipados (43)
15totolink—
68 CVE12 critCVSS 8.0
PoC 39
a3002r firmware (27) · a3002r (27) · a3002ru (17)
16campcodes—
61 CVECVSS 7.2
PoC 60
sales and inventory system (24) · online hospital management system (12) · online shopping portal (11)
17ао «ивк»—
52 CVE1 critCVSS 6.3
PoC 4
альт 8 сп (28) · альт сп 10 (28)
18dlink—
50 CVE2 critCVSS 7.2
PoC 18
di-7003g firmware (11) · dir-600l firmware (9) · dir-619l firmware (7)
19go—
50 CVE11 critCVSS 7.1
Nuclei 2PoC 6
github.com/mattermost/mattermost/server/v8 (9) · github.com/hashicorp/vault (2) · github.com/ackites/killwxapkg (2)
20cisco—
48 CVE1 critCVSS 6.2
Nuclei 1PoC 48
cisco ios xe software (20) · ios xe (20) · cisco catalyst sd-wan manager (6)
21intel corp.—
48 CVECVSS 6.5
intel iris xe graphics (15) · intel arc graphics (15) · intel data center gpu flex 170 (14)
22d-link corp.—
47 CVE2 critCVSS 7.1
PoC 16
di-7003gv2 (11) · dir-600l (9) · dir-619l (7)
23pypi—
47 CVE5 critCVSS 6.5
Nuclei 1PoC 11
vllm (9) · langroid (3) · vyper (2)
24ibm—
45 CVE1 critCVSS 6.1
db2 (8) · db2 for linux, unix and windows (8) · concert (4)
25sourcecodester—
45 CVECVSS 6.3
PoC 45
stock management system (8) · online student clearance system (7) · client database management system (6)
26d-link—
43 CVECVSS 7.1
PoC 15
di-7003gv2 (11) · dir-600l (9) · dir-619l (7)
27packagist—
42 CVE5 critCVSS 6.4
KEV 1Nuclei 1PoC 10
mautic/core (5) · typo3/cms-core (4) · nitsan/ns-backup (3)
28adobe—
40 CVE7 critCVSS 7.6
coldfusion (8) · substance 3d stager (6) · substance3d - stager (6)
29adobe systems inc.—
40 CVE7 critCVSS 7.6
coldfusion (8) · adobe animate 2024 (6) · adobe animate 2023 (6)
30tenda—
39 CVE7 critCVSS 7.9
PoC 18
rx2 pro firmware (11) · fh451 firmware (4) · w20e firmware (4)
31siemens—
38 CVE5 critCVSS 7.2
scalance lpe9403 firmware (12) · scalance lpe9403 (12) · simatic pcs neo v5.0 (4)
32itsourcecode—
36 CVECVSS 7.2
PoC 36
gym management system (15) · restaurant management system (9) · placement management system (6)
33maven—
35 CVE7 critCVSS 7.2
Nuclei 1PoC 3
org.apache.inlong:manager-pojo (3) · org.jenkins-ci.plugins:vmanager-plugin (2) · org.graylog2:graylog2-server (2)
34novell inc.—
35 CVECVSS 6.5
PoC 5
suse linux enterprise server (31) · suse linux enterprise server for sap applications (29) · opensuse leap (28)
35qualcomm—
35 CVECVSS 7.7
fastconnect 7800 firmware (30) · wsa8830 firmware (28) · wsa8835 firmware (28)
36qualcomm, inc.—
35 CVECVSS 7.5
snapdragon (35)
37samsung—
35 CVE2 critCVSS 6.9
KEV 1Nuclei 1PoC 1
android (12) · exynos 1480 firmware (9) · exynos w1000 firmware (8)
38cisco systems inc.—
33 CVE1 critCVSS 6.2
Nuclei 1PoC 33
cisco ios xe (11) · catalyst sd-wan manager (4) · cisco unified contact center enterprise (3)
39freefloat—
33 CVECVSS 7.3
NEWPoC 33
ftp server (33) · freefloat ftp server (21)
40npm—
32 CVE1 critCVSS 6.3
Nuclei 2PoC 4
@cloudflare/workers-oauth-provider (4) · passport-wsfed-saml2 (2) · mcp-markdownify-server (2)
41abb—
31 CVE4 critCVSS 7.1
NEW×5.2
matrix series (31) · aspect-enterprise (31) · nexus series (31)
42siemens ag—
31 CVE5 critCVSS 8.3
scalance lpe9403 (12) · simatic pcs neo (4) · polarion alm (4)
43samsung mobile—
30 CVECVSS 5.6
samsung mobile devices (13) · samsung gallery (4) · samsung notes (2)
44google—
26 CVE1 critCVSS 7.0
PoC 2
chrome (14) · android (8) · chrome os (1)
45crates.io—
25 CVE1 critCVSS 4.4
PoC 4
sudo-rs (2) · pingora-core (2) · crossbeam-channel (2)
46pcman—
25 CVECVSS 7.3
NEWPoC 24
ftp server (25)
47freescout—
24 CVE2 critCVSS 6.2
NEWPoC 4
freescout (24)
48freescout-help-desk—
24 CVE2 critCVSS 6.2
NEWPoC 4
freescout (24)
49code-projects—
23 CVECVSS 5.6
×3.3PoC 23
patient record management system (3) · employee record system (3) · tourism management system (2)
50red hat—
23 CVE1 critCVSS 6.1
PoC 1
red hat enterprise linux 8 (18) · red hat enterprise linux 9 (17) · red hat enterprise linux 10 (14)

#	Vendor	CVEs	Crit	KEV	Nuclei	Signals	Top products	Δ
1	linux	550	·	·	·	PoC 4	linux kernel (550) · linux (549)	—
2	сообщество свободного программного обеспечения	502	9	·	2	Nuclei 2PoC 36	linux (397) · debian gnu/linux (226) · freescout (24)	—
3	ооо «ред софт»	288	4	·	1	Nuclei 1PoC 18	ред ос (288)	—
4	ооо «русбитех-астра»	288	4	·	1	Nuclei 1PoC 17	astra linux special edition (287) · astra linux common edition (46) · пк "ald pro" (1)	—
5	ао "нппкт"	240	4	·	·	PoC 13	осон основа оnyx (240)	—
6	unknown	226	5	·	225	Nuclei 225PoC 226	illi link party! (4) · ekc tournament manager (3) · wp maps (3)	—
7	canonical ltd.	217	·	·	·	PoC 9	ubuntu (217) · apport (1)	—
8	red hat inc.	206	1	·	1	Nuclei 1PoC 12	red hat enterprise linux (204) · red hat openshift container platform (6) · red hat satellite (4)	—
9	ао «сбертех»	153	·	·	·	×9.6PoC 7	platform v sberlinux os server (152) · субд «platform v pangolin db» (2)	—
10	debian	145	·	·	·	×11.2PoC 4	debian linux (144) · trixie (1)	—
11	phpgurukul	122	3	·	·	×9.4PoC 117	park ticketing management system (7) · company visitor management system (6) · news portal project (6)	—
12	microsoft corp	84	5	5	·	KEV 5PoC 4	windows server 2022, 23h2 edition (server core installation) (40) · windows server 2025 (server core installation) (40) · windows server 2025 (40)	—
13	microsoft	80	5	5	·	KEV 5PoC 3	windows server 2022, 23h2 edition (server core installation) (40) · windows server 2022 23h2 (40) · windows server 2025 (server core installation) (38)	—
14	apple	77	4	·	·		macos (66) · ipados (46) · ios and ipados (43)	—
15	totolink	68	12	·	·	PoC 39	a3002r firmware (27) · a3002r (27) · a3002ru (17)	—
16	campcodes	61	·	·	·	PoC 60	sales and inventory system (24) · online hospital management system (12) · online shopping portal (11)	—
17	ао «ивк»	52	1	·	·	PoC 4	альт 8 сп (28) · альт сп 10 (28)	—
18	dlink	50	2	·	·	PoC 18	di-7003g firmware (11) · dir-600l firmware (9) · dir-619l firmware (7)	—
19	go	50	11	·	2	Nuclei 2PoC 6	github.com/mattermost/mattermost/server/v8 (9) · github.com/hashicorp/vault (2) · github.com/ackites/killwxapkg (2)	—
20	cisco	48	1	·	1	Nuclei 1PoC 48	cisco ios xe software (20) · ios xe (20) · cisco catalyst sd-wan manager (6)	—
21	intel corp.	48	·	·	·		intel iris xe graphics (15) · intel arc graphics (15) · intel data center gpu flex 170 (14)	—
22	d-link corp.	47	2	·	·	PoC 16	di-7003gv2 (11) · dir-600l (9) · dir-619l (7)	—
23	pypi	47	5	·	1	Nuclei 1PoC 11	vllm (9) · langroid (3) · vyper (2)	—
24	ibm	45	1	·	·		db2 (8) · db2 for linux, unix and windows (8) · concert (4)	—
25	sourcecodester	45	·	·	·	PoC 45	stock management system (8) · online student clearance system (7) · client database management system (6)	—
26	d-link	43	·	·	·	PoC 15	di-7003gv2 (11) · dir-600l (9) · dir-619l (7)	—
27	packagist	42	5	1	1	KEV 1Nuclei 1PoC 10	mautic/core (5) · typo3/cms-core (4) · nitsan/ns-backup (3)	—
28	adobe	40	7	·	·		coldfusion (8) · substance 3d stager (6) · substance3d - stager (6)	—
29	adobe systems inc.	40	7	·	·		coldfusion (8) · adobe animate 2024 (6) · adobe animate 2023 (6)	—
30	tenda	39	7	·	·	PoC 18	rx2 pro firmware (11) · fh451 firmware (4) · w20e firmware (4)	—
31	siemens	38	5	·	·		scalance lpe9403 firmware (12) · scalance lpe9403 (12) · simatic pcs neo v5.0 (4)	—
32	itsourcecode	36	·	·	·	PoC 36	gym management system (15) · restaurant management system (9) · placement management system (6)	—
33	maven	35	7	·	1	Nuclei 1PoC 3	org.apache.inlong:manager-pojo (3) · org.jenkins-ci.plugins:vmanager-plugin (2) · org.graylog2:graylog2-server (2)	—
34	novell inc.	35	·	·	·	PoC 5	suse linux enterprise server (31) · suse linux enterprise server for sap applications (29) · opensuse leap (28)	—
35	qualcomm	35	·	·	·		fastconnect 7800 firmware (30) · wsa8830 firmware (28) · wsa8835 firmware (28)	—
36	qualcomm, inc.	35	·	·	·		snapdragon (35)	—
37	samsung	35	2	1	1	KEV 1Nuclei 1PoC 1	android (12) · exynos 1480 firmware (9) · exynos w1000 firmware (8)	—
38	cisco systems inc.	33	1	·	1	Nuclei 1PoC 33	cisco ios xe (11) · catalyst sd-wan manager (4) · cisco unified contact center enterprise (3)	—
39	freefloat	33	·	·	·	NEWPoC 33	ftp server (33) · freefloat ftp server (21)	—
40	npm	32	1	·	2	Nuclei 2PoC 4	@cloudflare/workers-oauth-provider (4) · passport-wsfed-saml2 (2) · mcp-markdownify-server (2)	—
41	abb	31	4	·	·	NEW×5.2	matrix series (31) · aspect-enterprise (31) · nexus series (31)	—
42	siemens ag	31	5	·	·		scalance lpe9403 (12) · simatic pcs neo (4) · polarion alm (4)	—
43	samsung mobile	30	·	·	·		samsung mobile devices (13) · samsung gallery (4) · samsung notes (2)	—
44	google	26	1	·	·	PoC 2	chrome (14) · android (8) · chrome os (1)	—
45	crates.io	25	1	·	·	PoC 4	sudo-rs (2) · pingora-core (2) · crossbeam-channel (2)	—
46	pcman	25	·	·	·	NEWPoC 24	ftp server (25)	—
47	freescout	24	2	·	·	NEWPoC 4	freescout (24)	—
48	freescout-help-desk	24	2	·	·	NEWPoC 4	freescout (24)	—
49	code-projects	23	·	·	·	×3.3PoC 23	patient record management system (3) · employee record system (3) · tourism management system (2)	—
50	red hat	23	1	·	·	PoC 1	red hat enterprise linux 8 (18) · red hat enterprise linux 9 (17) · red hat enterprise linux 10 (14)	—