month report

October 2025

Data as of Jun 4, 2026, 13:26 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →

October 2025 closed with 4,544 published CVEs. 288 criticals, 31 added to CISA KEV (2 ransomware-linked). linux led volume, mostly via linux. Biggest breakout: oracle corp. at ×12.8 their 12-month median. Top weakness class — CWE-79 (721 CVE). 10 vendors cracked the top-100 for the first time.

Print view

Total CVEs

4,544

— MoM— YoY

Severity mix

288 / 1,462

critical / high

KEV added

2 ransomware-linked

Nuclei coverage

15.8%

717 CVEs with templates

Time to exploit

How fast the community ships detection after a CVE drops.

Days → Nuclei (median)

135.3

n=717

Within 7 days

0.0%

Within 30 days

0.0%

Days → KEV (median)

n=9

Detection gap

KEV pressure, no Nuclei coverage

October 2025 · vendors with active exploitation listed by CISA but no public detection template.

KEV 1f544 CVE

Weakness × Vendor

What's spreading where in October 2025

Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.

Breakout vendors

CVE count ≥3× their own 12-period median.

12.8×oracle corp.64 CVE
4.8×hcltech24 CVE
3.8×hcl software19 CVE
3.4×tenda55 CVE
3.4×totolink24 CVE
3.3×ibm corp.23 CVE
3.0×nvidia15 CVE
3.0×shenzhen tenda technology co., ltd.45 CVE

First time in top-100

Vendors never in top-100 in the prior 24 periods.

Top vendors

Ranked by distinct CVE count this period.

1linux—
651 CVE1 critCVSS 6.0
PoC 3
linux (651) · linux kernel (450)
2сообщество свободного программного обеспечения—
541 CVE6 critCVSS 6.1
Nuclei 1PoC 15
linux (482) · debian gnu/linux (308) · freescout (22)
3red hat inc.—
323 CVECVSS 6.1
Nuclei 1PoC 12
red hat enterprise linux (322) · red hat 3scale api management platform (5) · red hat openshift container platform (3)
4canonical ltd.—
193 CVECVSS 6.1
PoC 4
ubuntu (193)
5ооо «русбитех-астра»—
190 CVE8 critCVSS 6.4
Nuclei 1PoC 24
astra linux special edition (190) · astra linux common edition (12)
6microsoft—
180 CVE10 critCVSS 7.0
KEV 3Nuclei 1PoC 3
windows server 2025 (126) · windows server 2025 (server core installation) (126) · windows 11 24h2 (120)
7microsoft corp—
171 CVE8 critCVSS 7.0
KEV 3Nuclei 1PoC 3
windows server 2025 (server core installation) (125) · windows server 2025 (125) · windows 11 24h2 (120)
8maven—
103 CVE5 critCVSS 6.3
Nuclei 2PoC 5
com.liferay.portal:release.portal.bom (12) · com.liferay.portal:com.liferay.portal.impl (5) · com.liferay:com.liferay.change.tracking.web (4)
9ооо «ред софт»—
100 CVE7 critCVSS 6.7
Nuclei 2PoC 26
ред ос (100)
10nagios—
99 CVE9 critCVSS 6.7
NEWPoC 4
xi (74) · nagios xi (74) · log server (15)
11oracle—
78 CVE5 critCVSS 6.1
KEV 3Nuclei 3PoC 3
mysql server (9) · zfs storage appliance kit (9) · vm virtualbox (9)
12oracle corporation—
78 CVE5 critCVSS 6.1
KEV 3Nuclei 3PoC 3
mysql server (9) · oracle zfs storage appliance kit (9) · oracle vm virtualbox (9)
13ао «сбертех»—
78 CVE1 critCVSS 6.0
PoC 7
platform v sberlinux os server (78)
14code-projects—
76 CVE1 critCVSS 6.0
PoC 76
simple food ordering system (11) · e-commerce website (10) · client details system (7)
15nagios enterprises llc—
73 CVE10 critCVSS 6.9
PoC 2
nagios xi (50) · nagios log server (15) · nagios fusion (5)
16pypi—
69 CVE10 critCVSS 7.0
PoC 9
bbot (4) · keras (4) · apache-airflow (3)
17oracle corp.—
64 CVE5 critCVSS 6.3
×12.8KEV 3Nuclei 3PoC 3
mysql server (9) · vm virtualbox (9) · oracle peoplesoft enterprise peopletools (7)
18packagist—
64 CVE1 critCVSS 6.2
Nuclei 1PoC 13
moodle/moodle (7) · bagisto/bagisto (6) · shopware/platform (5)
19ао «ивк»—
64 CVE5 critCVSS 6.5
Nuclei 1PoC 7
альт сп 10 (61) · альт 8 сп (19) · ивк кольчуга-к (лкнв.466217.002) (1)
20fabian—
63 CVE1 critCVSS 5.9
PoC 63
simple food ordering system (11) · e-commerce website (10) · client details system (8)
21go—
60 CVE4 critCVSS 6.9
PoC 8
github.com/mattermost/mattermost/server/v8 (6) · github.com/canonical/lxd (6) · github.com/mattermost/mattermost-server (6)
22npm—
55 CVE4 critCVSS 7.3
Nuclei 1PoC 9
flowise (11) · @strapi/core (3) · @anthropic-ai/claude-code (2)
23tenda—
55 CVE2 critCVSS 8.5
×3.4PoC 46
ch22 (13) · ch22 firmware (13) · ac18 firmware (9)
24shenzhen tenda technology co., ltd.—
45 CVE2 critCVSS 8.4
×3.0PoC 36
tenda ch22 (13) · tenda ac18 (9) · ac6 (8)
25f5—
44 CVECVSS 7.1
KEV 1
big-ip (34) · big-ip application security manager (24) · big-ip advanced web application firewall (23)
26qnap—
44 CVECVSS 5.7
quts hero (26) · qts (26) · qsync central (15)
27qnap systems inc.—
44 CVECVSS 5.7
qts (26) · quts hero (24) · qsync central (15)
28d-link corp.—
43 CVE3 critCVSS 7.4
PoC 35
dir-600l (24) · nuclias connect (4) · di-7100g (3)
29dlink—
41 CVE4 critCVSS 7.4
PoC 36
dir-600l firmware (24) · di-7001mini-8g firmware (3) · dap-2695 firmware (3)
30andsoft—
40 CVE9 critCVSS 7.0
NEW
e-tms (40)
31ibm—
40 CVE3 critCVSS 6.5
transformation extender advanced (5) · db2 high performance unload (4) · engineering requirements management doors next (4)
32juniper—
40 CVE1 critCVSS 6.4
PoC 40
junos space (26) · junos os evolved (7) · junos (7)
33juniper networks—
40 CVE1 critCVSS 6.5
PoC 40
junos space (26) · junos os (8) · junos os evolved (7)
34liferay—
40 CVECVSS 5.6
PoC 2
digital experience platform (40) · dxp (40) · liferay portal (39)
35sourcecodester—
38 CVECVSS 6.4
PoC 38
hotel and lodge management system (15) · best salon management system (4) · farm management system (3)
36adobe—
36 CVE1 critCVSS 7.0
magento (5) · adobe commerce (5) · substance 3d stager (5)
37azure-access—
34 CVE20 critCVSS 8.4
NEW
blu-ic2 firmware (34) · blu-ic4 firmware (34)
38azure access technology—
34 CVE20 critCVSS 8.4
NEW
blu-ic4 (34) · blu-ic2 (34)
39dell—
34 CVE1 critCVSS 6.0
data domain operating system (20) · powerprotect data domain with data domain operating system (dd os) lts2024 (18) · powerprotect data domain with data domain operating system (dd os) of feature release (18)
40ао "нппкт"—
33 CVE5 critCVSS 7.6
Nuclei 4PoC 12
осон основа оnyx (33)
41ооо "вебсофт девелопмент"—
33 CVE9 critCVSS 6.7
NEW
websoft hcm (33)
42fortinet—
32 CVECVSS 5.7
fortios (16) · fortiproxy (13) · fortipam (6)
43the wikimedia foundation—
30 CVE
NEW
mediawiki - growthexperiments extension (2) · mediawiki pageforms extension (1) · mediawiki - pagetriage extension (1)
44samsung—
28 CVECVSS 6.4
android (11) · notes (6) · exynos w930 firmware (4)
45fortinet inc.—
26 CVECVSS 6.0
fortios (13) · fortiproxy (10) · fortidlp (4)
46samsung mobile—
26 CVECVSS 5.2
samsung mobile devices (12) · samsung notes (6) · smart switch (4)
47hcltech—
24 CVECVSS 5.1
×4.8
aion (7) · unica (5) · bigfix modern client management (4)
48totolink—
24 CVE2 critCVSS 8.2
×3.4PoC 15
lr350 firmware (7) · lr350 (7) · a3300r firmware (6)
49unknown—
24 CVE3 critCVSS 6.2
Nuclei 24PoC 15
ns maintenance mode for wp (2) · wp private content plus (1) · admin and customer messages after order for woocommerce: orderconvo (1)
50eclipse—
23 CVE4 critCVSS 6.8
NEWPoC 4
threadx netx duo (12) · threadx usbx (5) · threadx (3)

#	Vendor	CVEs	Crit	KEV	Nuclei	Signals	Top products	Δ
1	linux	651	1	·	·	PoC 3	linux (651) · linux kernel (450)	—
2	сообщество свободного программного обеспечения	541	6	·	1	Nuclei 1PoC 15	linux (482) · debian gnu/linux (308) · freescout (22)	—
3	red hat inc.	323	·	·	1	Nuclei 1PoC 12	red hat enterprise linux (322) · red hat 3scale api management platform (5) · red hat openshift container platform (3)	—
4	canonical ltd.	193	·	·	·	PoC 4	ubuntu (193)	—
5	ооо «русбитех-астра»	190	8	·	1	Nuclei 1PoC 24	astra linux special edition (190) · astra linux common edition (12)	—
6	microsoft	180	10	3	1	KEV 3Nuclei 1PoC 3	windows server 2025 (126) · windows server 2025 (server core installation) (126) · windows 11 24h2 (120)	—
7	microsoft corp	171	8	3	1	KEV 3Nuclei 1PoC 3	windows server 2025 (server core installation) (125) · windows server 2025 (125) · windows 11 24h2 (120)	—
8	maven	103	5	·	2	Nuclei 2PoC 5	com.liferay.portal:release.portal.bom (12) · com.liferay.portal:com.liferay.portal.impl (5) · com.liferay:com.liferay.change.tracking.web (4)	—
9	ооо «ред софт»	100	7	·	2	Nuclei 2PoC 26	ред ос (100)	—
10	nagios	99	9	·	·	NEWPoC 4	xi (74) · nagios xi (74) · log server (15)	—
11	oracle	78	5	3	3	KEV 3Nuclei 3PoC 3	mysql server (9) · zfs storage appliance kit (9) · vm virtualbox (9)	—
12	oracle corporation	78	5	3	3	KEV 3Nuclei 3PoC 3	mysql server (9) · oracle zfs storage appliance kit (9) · oracle vm virtualbox (9)	—
13	ао «сбертех»	78	1	·	·	PoC 7	platform v sberlinux os server (78)	—
14	code-projects	76	1	·	·	PoC 76	simple food ordering system (11) · e-commerce website (10) · client details system (7)	—
15	nagios enterprises llc	73	10	·	·	PoC 2	nagios xi (50) · nagios log server (15) · nagios fusion (5)	—
16	pypi	69	10	·	·	PoC 9	bbot (4) · keras (4) · apache-airflow (3)	—
17	oracle corp.	64	5	3	3	×12.8KEV 3Nuclei 3PoC 3	mysql server (9) · vm virtualbox (9) · oracle peoplesoft enterprise peopletools (7)	—
18	packagist	64	1	·	1	Nuclei 1PoC 13	moodle/moodle (7) · bagisto/bagisto (6) · shopware/platform (5)	—
19	ао «ивк»	64	5	·	1	Nuclei 1PoC 7	альт сп 10 (61) · альт 8 сп (19) · ивк кольчуга-к (лкнв.466217.002) (1)	—
20	fabian	63	1	·	·	PoC 63	simple food ordering system (11) · e-commerce website (10) · client details system (8)	—
21	go	60	4	·	·	PoC 8	github.com/mattermost/mattermost/server/v8 (6) · github.com/canonical/lxd (6) · github.com/mattermost/mattermost-server (6)	—
22	npm	55	4	·	1	Nuclei 1PoC 9	flowise (11) · @strapi/core (3) · @anthropic-ai/claude-code (2)	—
23	tenda	55	2	·	·	×3.4PoC 46	ch22 (13) · ch22 firmware (13) · ac18 firmware (9)	—
24	shenzhen tenda technology co., ltd.	45	2	·	·	×3.0PoC 36	tenda ch22 (13) · tenda ac18 (9) · ac6 (8)	—
25	f5	44	·	1	·	KEV 1	big-ip (34) · big-ip application security manager (24) · big-ip advanced web application firewall (23)	—
26	qnap	44	·	·	·		quts hero (26) · qts (26) · qsync central (15)	—
27	qnap systems inc.	44	·	·	·		qts (26) · quts hero (24) · qsync central (15)	—
28	d-link corp.	43	3	·	·	PoC 35	dir-600l (24) · nuclias connect (4) · di-7100g (3)	—
29	dlink	41	4	·	·	PoC 36	dir-600l firmware (24) · di-7001mini-8g firmware (3) · dap-2695 firmware (3)	—
30	andsoft	40	9	·	·	NEW	e-tms (40)	—
31	ibm	40	3	·	·		transformation extender advanced (5) · db2 high performance unload (4) · engineering requirements management doors next (4)	—
32	juniper	40	1	·	·	PoC 40	junos space (26) · junos os evolved (7) · junos (7)	—
33	juniper networks	40	1	·	·	PoC 40	junos space (26) · junos os (8) · junos os evolved (7)	—
34	liferay	40	·	·	·	PoC 2	digital experience platform (40) · dxp (40) · liferay portal (39)	—
35	sourcecodester	38	·	·	·	PoC 38	hotel and lodge management system (15) · best salon management system (4) · farm management system (3)	—
36	adobe	36	1	·	·		magento (5) · adobe commerce (5) · substance 3d stager (5)	—
37	azure-access	34	20	·	·	NEW	blu-ic2 firmware (34) · blu-ic4 firmware (34)	—
38	azure access technology	34	20	·	·	NEW	blu-ic4 (34) · blu-ic2 (34)	—
39	dell	34	1	·	·		data domain operating system (20) · powerprotect data domain with data domain operating system (dd os) lts2024 (18) · powerprotect data domain with data domain operating system (dd os) of feature release (18)	—
40	ао "нппкт"	33	5	·	4	Nuclei 4PoC 12	осон основа оnyx (33)	—
41	ооо "вебсофт девелопмент"	33	9	·	·	NEW	websoft hcm (33)	—
42	fortinet	32	·	·	·		fortios (16) · fortiproxy (13) · fortipam (6)	—
43	the wikimedia foundation	30	·	·	·	NEW	mediawiki - growthexperiments extension (2) · mediawiki pageforms extension (1) · mediawiki - pagetriage extension (1)	—
44	samsung	28	·	·	·		android (11) · notes (6) · exynos w930 firmware (4)	—
45	fortinet inc.	26	·	·	·		fortios (13) · fortiproxy (10) · fortidlp (4)	—
46	samsung mobile	26	·	·	·		samsung mobile devices (12) · samsung notes (6) · smart switch (4)	—
47	hcltech	24	·	·	·	×4.8	aion (7) · unica (5) · bigfix modern client management (4)	—
48	totolink	24	2	·	·	×3.4PoC 15	lr350 firmware (7) · lr350 (7) · a3300r firmware (6)	—
49	unknown	24	3	·	24	Nuclei 24PoC 15	ns maintenance mode for wp (2) · wp private content plus (1) · admin and customer messages after order for woocommerce: orderconvo (1)	—
50	eclipse	23	4	·	·	NEWPoC 4	threadx netx duo (12) · threadx usbx (5) · threadx (3)	—