month report

December 2025

Data as of Jun 4, 2026, 13:26 UTCSnapshot v1 Sources NVD+CISA KEV+EPSS+Nuclei templates Methodology →

December 2025 closed with 5,771 published CVEs. 398 criticals, 20 added to CISA KEV (1 ransomware-linked). linux led volume, mostly via linux. Biggest breakout: linux at ×5.1 their 12-month median. Top weakness class — CWE-79 (826 CVE). 10 vendors cracked the top-100 for the first time.

Print view

Total CVEs

5,771

— MoM— YoY

Severity mix

398 / 1,713

critical / high

KEV added

1 ransomware-linked

Nuclei coverage

22.3%

1,288 CVEs with templates

Time to exploit

How fast the community ships detection after a CVE drops.

Days → Nuclei (median)

78.6

n=1,288

Within 7 days

0.0%

Within 30 days

0.0%

Days → KEV (median)

n=19

Detection gap

KEV pressure, no Nuclei coverage

December 2025 · vendors with active exploitation listed by CISA but no public detection template.

KEV 4apple68 CVE
KEV 3google128 CVE
KEV 3google inc71 CVE
KEV 2microsoft66 CVE
KEV 1ооо «русбитех-астра»151 CVE
KEV 1microsoft corp63 CVE
KEV 1fortinet18 CVE

Weakness × Vendor

What's spreading where in December 2025

Cells shaded by share of vendor's hottest weakness. Click any cell to open the CWE history.

Breakout vendors

CVE count ≥3× their own 12-period median.

5.1×linux1,055 CVE
4.3×kentico26 CVE
4.1×google128 CVE
3.7×google inc71 CVE
3.2×adobe systems inc.137 CVE
3.1×adobe135 CVE
3.0×mediatek, inc.30 CVE

First time in top-100

Vendors never in top-100 in the prior 24 periods.

#20axiomthemes58 CVE
#23ancorathemes48 CVE
#32merkulove28 CVE
#34kentico26 CVE
#36mailenable25 CVE
#38getgrav22 CVE
#40sound422 CVE
#41sound4 ltd.22 CVE
#46kantar media20 CVE
#54frappe17 CVE

Top vendors

Ranked by distinct CVE count this period.

1linux—
1,055 CVE1 critCVSS 5.8
×5.1
linux (1055) · linux kernel (14)
2сообщество свободного программного обеспечения—
450 CVE10 critCVSS 5.9
KEV 3Nuclei 6PoC 6
linux (395) · debian gnu/linux (264) · wpe webkit (4)
3red hat inc.—
194 CVECVSS 6.4
PoC 3
red hat enterprise linux (187) · red hat enterprise linux ai (4) · openshift dev spaces (4)
4ооо «русбитех-астра»—
151 CVE7 critCVSS 6.3
KEV 1PoC 4
astra linux special edition (150) · astra-safepolicy (8) · linux astra modules (5)
5canonical ltd.—
139 CVE1 critCVSS 6.2
ubuntu (139)
6adobe systems inc.—
137 CVE6 critCVSS 5.6
×3.2
adobe experience manager (117) · adobe experience manager cloud service (69) · coldfusion (11)
7adobe—
135 CVE6 critCVSS 5.7
×3.1
adobe experience manager (115) · experience manager (115) · coldfusion (11)
8google—
128 CVE2 critCVSS 7.0
×4.1KEV 3
android (108) · chrome (19) · security operations soar (1)
9ооо «ред софт»—
86 CVE3 critCVSS 6.3
KEV 2Nuclei 1PoC 5
ред ос (80) · ред база данных (6)
10go—
83 CVE6 critCVSS 6.0
KEV 1Nuclei 1PoC 12
code.gitea.io/gitea (9) · github.com/mattermost/mattermost/server/v8 (8) · github.com/mattermost/mattermost (5)
11ао «ивк»—
77 CVE4 critCVSS 6.6
PoC 1
альт сп 10 (64) · альт 8 сп (38)
12npm—
75 CVE9 critCVSS 7.3
KEV 2Nuclei 3PoC 19
n8n (5) · @vitejs/plugin-rsc (5) · react-server-dom-webpack (4)
13code-projects—
74 CVECVSS 6.5
PoC 71
student file management system (13) · refugee food management system (12) · simple stock system (6)
14pypi—
74 CVE8 critCVSS 6.8
KEV 1Nuclei 1PoC 12
picklescan (13) · weblate (5) · mcp-server-git (3)
15google inc—
71 CVE1 critCVSS 7.0
×3.7KEV 3
android (48) · google chrome (19) · android studio (2)
16apple—
68 CVE2 critCVSS 5.8
KEV 4
macos (65) · ios and ipados (28) · visionos (21)
17microsoft—
66 CVE3 critCVSS 7.6
KEV 2
windows server 2025 (36) · windows server 2025 (server core installation) (36) · windows 11 24h2 (36)
18packagist—
64 CVE9 critCVSS 6.9
Nuclei 1PoC 25
getgrav/grav (22) · feehi/feehicms (3) · thorsten/phpmyfaq (3)
19microsoft corp—
63 CVECVSS 7.6
KEV 1
windows server 2025 (server core installation) (36) · windows 11 25h2 (36) · windows server 2025 (36)
20axiomthemes—
58 CVECVSS 8.1
NEWNuclei 58
777 (1) · agricola (1) · algenix (1)
21tenda—
51 CVE12 critCVSS 8.3
PoC 48
wh450 firmware (21) · wh450 (21) · m3 (7)
22ао «сбертех»—
49 CVE1 critCVSS 6.2
PoC 4
platform v sberlinux os server (49)
23ancorathemes—
48 CVE1 critCVSS 8.1
NEWNuclei 47
childhope (1) · chinchilla (1) · detailx (1)
24maven—
48 CVE2 critCVSS 6.5
Nuclei 3PoC 9
org.jenkins-ci.main:jenkins-core (5) · org.apache.streampark:streampark (3) · org.nutz:nutzboot-parent (3)
25fabian—
46 CVECVSS 6.7
PoC 44
student file management system (13) · refugee food management system (12) · currency exchange system (4)
26ruijie—
41 CVECVSS 8.7
PoC 41
rg-eap602 firmware (7) · x30 pro firmware (6) · rg-ew300 pro firmware (5)
27itsourcecode—
39 CVECVSS 7.3
PoC 39
student management system (19) · online cake ordering system (7) · covid tracking system (4)
28mediatek, inc.—
30 CVECVSS 6.3
×3.0
mt2718, mt6739, mt6761, mt6765, mt6768, mt6781, mt6789, mt6833, mt6835, mt6853, mt6855, mt6877, mt6878, mt6879, mt6883, mt6885, mt6886, mt6889, mt6893, mt6895, mt6897, mt6899, mt6983, mt6985, mt6989, mt6991, mt8196, mt8676, mt8678, mt8792, mt8793 (7) · mt2735, mt6833, mt6833p, mt6853, mt6853t, mt6855, mt6855t, mt6873, mt6875, mt6875t, mt6877, mt6877t, mt6877tt, mt6880, mt6883, mt6885, mt6889, mt6890, mt6891, mt6893, mt8675, mt8771, mt8791, mt8791t, mt8797 (6) · mt6739, mt6761, mt6765, mt6768, mt6781, mt6789, mt6833, mt6835, mt6853, mt6855, mt6877, mt6878, mt6879, mt6883, mt6885, mt6886, mt6889, mt6893, mt6895, mt6897, mt6899, mt6983, mt6985, mt6989, mt6991, mt8186, mt8188, mt8196, mt8667, mt8673, mt8676, mt8678, mt8765, mt8766, mt8768, mt8771, mt8781, mt8791t, mt8792, mt8793, mt8795t, mt8796, mt8798, mt8873, mt8883 (4)
29unknown—
30 CVE2 critCVSS 6.4
Nuclei 26PoC 21
handl utm grabber / tracker (2) · url shortify (2) · advance wp query search filter (2)
30angeljudesuarez—
28 CVECVSS 7.3
PoC 28
student management system (21) · covid tracking system (4) · society management system (2)
31ibm—
28 CVE1 critCVSS 5.8
aspera orchestrator (4) · concert (4) · controller (4)
32merkulove—
28 CVECVSS 5.4
NEWNuclei 28
appender (1) · buttoner for elementor (1) · coder for elementor (1)
33ао "нппкт"—
27 CVE3 critCVSS 7.3
PoC 1
осон основа оnyx (27)
34kentico—
26 CVECVSS 6.0
NEW×4.3
xperience (26)
35foxit—
25 CVECVSS 6.7
pdf editor (18) · pdf reader (18) · pdf editor cloud (7)
36mailenable—
25 CVECVSS 6.9
NEW
mailenable (25)
37apache software foundation—
22 CVE4 critCVSS 7.7
Nuclei 1PoC 2
apache http server (5) · http server (5) · apache fineract (3)
38getgrav—
22 CVE2 critCVSS 6.6
NEWPoC 6
grav (22) · grav-plugin-admin (6)
39siemens—
22 CVECVSS 7.1
ruggedcom rox rx1512 (6) · ruggedcom rox mx5000 (6) · ruggedcom rox mx5000re (6)
40sound4—
22 CVE9 critCVSS 8.4
NEWPoC 22
pulse firmware (21) · first firmware (21) · impact eco firmware (21)
41sound4 ltd.—
22 CVE9 critCVSS 8.4
NEWPoC 22
impact/pulse/first (20) · stream (20) · bigvoice4 (20)
42nextcloud—
21 CVECVSS 4.2
PoC 1
security-advisories (19) · nextcloud server (5) · calendar (3)
43siemens ag—
21 CVECVSS 6.4
ruggedcom rox ii (6) · simatic cn 4100 (5) · gridscale x prepay (2)
44apache—
20 CVE3 critCVSS 7.6
Nuclei 1PoC 2
http server (5) · fineract (3) · streampark (3)
45autodesk—
20 CVECVSS 7.8
shared components (20)
46kantar media—
20 CVE8 critCVSS 8.4
NEWPoC 20
wm2 (20)
47campcodes—
19 CVECVSS 6.2
PoC 19
supplier management system (7) · complete online beauty parlor management system (4) · online student enrollment system (2)
48advantech—
18 CVE1 critCVSS 6.2
wise-deviceon server (11) · webaccess/scada (5) · webaccess\/scada (5)
49churchcrm—
18 CVE4 critCVSS 7.5
PoC 4
churchcrm (18) · crm (18)
50fortinet—
18 CVE2 critCVSS 6.8
KEV 1
fortios (4) · fortiweb (3) · fortisandbox (3)

#	Vendor	CVEs	Crit	KEV	Nuclei	Signals	Top products	Δ
1	linux	1,055	1	·	·	×5.1	linux (1055) · linux kernel (14)	—
2	сообщество свободного программного обеспечения	450	10	3	6	KEV 3Nuclei 6PoC 6	linux (395) · debian gnu/linux (264) · wpe webkit (4)	—
3	red hat inc.	194	·	·	·	PoC 3	red hat enterprise linux (187) · red hat enterprise linux ai (4) · openshift dev spaces (4)	—
4	ооо «русбитех-астра»	151	7	1	·	KEV 1PoC 4	astra linux special edition (150) · astra-safepolicy (8) · linux astra modules (5)	—
5	canonical ltd.	139	1	·	·		ubuntu (139)	—
6	adobe systems inc.	137	6	·	·	×3.2	adobe experience manager (117) · adobe experience manager cloud service (69) · coldfusion (11)	—
7	adobe	135	6	·	·	×3.1	adobe experience manager (115) · experience manager (115) · coldfusion (11)	—
8	google	128	2	3	·	×4.1KEV 3	android (108) · chrome (19) · security operations soar (1)	—
9	ооо «ред софт»	86	3	2	1	KEV 2Nuclei 1PoC 5	ред ос (80) · ред база данных (6)	—
10	go	83	6	1	1	KEV 1Nuclei 1PoC 12	code.gitea.io/gitea (9) · github.com/mattermost/mattermost/server/v8 (8) · github.com/mattermost/mattermost (5)	—
11	ао «ивк»	77	4	·	·	PoC 1	альт сп 10 (64) · альт 8 сп (38)	—
12	npm	75	9	2	3	KEV 2Nuclei 3PoC 19	n8n (5) · @vitejs/plugin-rsc (5) · react-server-dom-webpack (4)	—
13	code-projects	74	·	·	·	PoC 71	student file management system (13) · refugee food management system (12) · simple stock system (6)	—
14	pypi	74	8	1	1	KEV 1Nuclei 1PoC 12	picklescan (13) · weblate (5) · mcp-server-git (3)	—
15	google inc	71	1	3	·	×3.7KEV 3	android (48) · google chrome (19) · android studio (2)	—
16	apple	68	2	4	·	KEV 4	macos (65) · ios and ipados (28) · visionos (21)	—
17	microsoft	66	3	2	·	KEV 2	windows server 2025 (36) · windows server 2025 (server core installation) (36) · windows 11 24h2 (36)	—
18	packagist	64	9	·	1	Nuclei 1PoC 25	getgrav/grav (22) · feehi/feehicms (3) · thorsten/phpmyfaq (3)	—
19	microsoft corp	63	·	1	·	KEV 1	windows server 2025 (server core installation) (36) · windows 11 25h2 (36) · windows server 2025 (36)	—
20	axiomthemes	58	·	·	58	NEWNuclei 58	777 (1) · agricola (1) · algenix (1)	—
21	tenda	51	12	·	·	PoC 48	wh450 firmware (21) · wh450 (21) · m3 (7)	—
22	ао «сбертех»	49	1	·	·	PoC 4	platform v sberlinux os server (49)	—
23	ancorathemes	48	1	·	47	NEWNuclei 47	childhope (1) · chinchilla (1) · detailx (1)	—
24	maven	48	2	·	3	Nuclei 3PoC 9	org.jenkins-ci.main:jenkins-core (5) · org.apache.streampark:streampark (3) · org.nutz:nutzboot-parent (3)	—
25	fabian	46	·	·	·	PoC 44	student file management system (13) · refugee food management system (12) · currency exchange system (4)	—
26	ruijie	41	·	·	·	PoC 41	rg-eap602 firmware (7) · x30 pro firmware (6) · rg-ew300 pro firmware (5)	—
27	itsourcecode	39	·	·	·	PoC 39	student management system (19) · online cake ordering system (7) · covid tracking system (4)	—
28	mediatek, inc.	30	·	·	·	×3.0	mt2718, mt6739, mt6761, mt6765, mt6768, mt6781, mt6789, mt6833, mt6835, mt6853, mt6855, mt6877, mt6878, mt6879, mt6883, mt6885, mt6886, mt6889, mt6893, mt6895, mt6897, mt6899, mt6983, mt6985, mt6989, mt6991, mt8196, mt8676, mt8678, mt8792, mt8793 (7) · mt2735, mt6833, mt6833p, mt6853, mt6853t, mt6855, mt6855t, mt6873, mt6875, mt6875t, mt6877, mt6877t, mt6877tt, mt6880, mt6883, mt6885, mt6889, mt6890, mt6891, mt6893, mt8675, mt8771, mt8791, mt8791t, mt8797 (6) · mt6739, mt6761, mt6765, mt6768, mt6781, mt6789, mt6833, mt6835, mt6853, mt6855, mt6877, mt6878, mt6879, mt6883, mt6885, mt6886, mt6889, mt6893, mt6895, mt6897, mt6899, mt6983, mt6985, mt6989, mt6991, mt8186, mt8188, mt8196, mt8667, mt8673, mt8676, mt8678, mt8765, mt8766, mt8768, mt8771, mt8781, mt8791t, mt8792, mt8793, mt8795t, mt8796, mt8798, mt8873, mt8883 (4)	—
29	unknown	30	2	·	26	Nuclei 26PoC 21	handl utm grabber / tracker (2) · url shortify (2) · advance wp query search filter (2)	—
30	angeljudesuarez	28	·	·	·	PoC 28	student management system (21) · covid tracking system (4) · society management system (2)	—
31	ibm	28	1	·	·		aspera orchestrator (4) · concert (4) · controller (4)	—
32	merkulove	28	·	·	28	NEWNuclei 28	appender (1) · buttoner for elementor (1) · coder for elementor (1)	—
33	ао "нппкт"	27	3	·	·	PoC 1	осон основа оnyx (27)	—
34	kentico	26	·	·	·	NEW×4.3	xperience (26)	—
35	foxit	25	·	·	·		pdf editor (18) · pdf reader (18) · pdf editor cloud (7)	—
36	mailenable	25	·	·	·	NEW	mailenable (25)	—
37	apache software foundation	22	4	·	1	Nuclei 1PoC 2	apache http server (5) · http server (5) · apache fineract (3)	—
38	getgrav	22	2	·	·	NEWPoC 6	grav (22) · grav-plugin-admin (6)	—
39	siemens	22	·	·	·		ruggedcom rox rx1512 (6) · ruggedcom rox mx5000 (6) · ruggedcom rox mx5000re (6)	—
40	sound4	22	9	·	·	NEWPoC 22	pulse firmware (21) · first firmware (21) · impact eco firmware (21)	—
41	sound4 ltd.	22	9	·	·	NEWPoC 22	impact/pulse/first (20) · stream (20) · bigvoice4 (20)	—
42	nextcloud	21	·	·	·	PoC 1	security-advisories (19) · nextcloud server (5) · calendar (3)	—
43	siemens ag	21	·	·	·		ruggedcom rox ii (6) · simatic cn 4100 (5) · gridscale x prepay (2)	—
44	apache	20	3	·	1	Nuclei 1PoC 2	http server (5) · fineract (3) · streampark (3)	—
45	autodesk	20	·	·	·		shared components (20)	—
46	kantar media	20	8	·	·	NEWPoC 20	wm2 (20)	—
47	campcodes	19	·	·	·	PoC 19	supplier management system (7) · complete online beauty parlor management system (4) · online student enrollment system (2)	—
48	advantech	18	1	·	·		wise-deviceon server (11) · webaccess/scada (5) · webaccess\/scada (5)	—
49	churchcrm	18	4	·	·	PoC 4	churchcrm (18) · crm (18)	—
50	fortinet	18	2	1	·	KEV 1	fortios (4) · fortiweb (3) · fortisandbox (3)	—