Reports
Weekly Enterprise  Exploitation Trend Report
Manage view

Weekly Enterprise Exploitation Trend Report

27-05-2026 to 02-06-2026
The report focuses solely on the exploitation statistics specific to enterprise vendors and their products over the past week, providing valuable insights to prioritize security measures and address emerging threats effectively.
Download PDF
Subscribe
273
273
Actively Exploited Vulnerabilities
114
114
Vendors Actively Exploited
Apache
Apache
Most Exploited Vendor
Microsoft Exchange
Microsoft Exchange
Most Exploited Product
Top 10 Actively Exploited Vendors
1
Apache
2
Ivanti
3
Cisco
4
Atlassian
5
VMware
6
Microsoft
7
Citrix
8
Oracle
9
Palo Alto Networks
10
Adobe
Top 10 CVEs of 2025 with the Highest EPSS Scores -02-06-2026
1
CVE-2023-23752
  • Joomla
  • Improper Access Control
  • EPSS: 0.94527
  • Percentile: 1
2
CVE-2024-6670
  • WhatsUp Gold
  • SQL Injection
  • EPSS: 0.94468
  • Percentile: 0.99997
3
CVE-2024-23897
  • Jenkins
  • Arbitrary File Read
  • EPSS: 0.94466
  • Percentile: 0.99996
4
CVE-2023-32315
  • Openfire
  • Path Traversal
  • EPSS: 0.94441
  • Percentile: 0.99991
5
CVE-2023-35078
  • Ivanti EPMM
  • Authentication Bypass
  • EPSS: 0.94438
  • Percentile: 0.99989
6
CVE-2024-7593
  • Ivanti vTM
  • Authentication Bypass
  • EPSS: 0.94436
  • Percentile: 0.99988
7
CVE-2023-46747
  • F5 BIG-IP Configuration Utility
  • Authentication Bypass
  • EPSS: 0.94436
  • Percentile: 0.99987
8
CVE-2023-46604
  • Java OpenWire protocol
  • Code Injection
  • EPSS: 0.94436
  • Percentile: 0.99988
9
CVE-2023-40044
  • WS_FTP Server
  • Insecure Deserialization
  • EPSS: 0.94436
  • Percentile: 0.99988
10
CVE-2024-4040
  • CrushFTP
  • SSTI
  • EPSS: 0.94426
  • Percentile: 0.99984
Top Exploited CVEs Against Enterprise Applications
CVE-2022-41082
Critical
Critical
Critical
Critical
Microsoft
  • Command Injection
  • Exchange
  • Used by Ransomware
    -
    United States
CVE-2021-42013
Critical
Critical
Critical
Critical
Apache
  • Path Traversal
  • Apache HTTP Server
  • Used by Ransomware
    -
    China
CVE-2017-9841
Critical
Critical
Critical
Critical
PHPUnit - Sebastian Bergmann
  • Command Injection
  • PHPUnit
  • -
    United States
CVE-2026-41940
Critical
Critical
Critical
Critical
cPanel
  • Command Injection
  • cPanel and WHM
  • Used by Ransomware
    -
    United States
CVE-2023-20198
Critical
Critical
Critical
Critical
Cisco
  • Privilege Escalation
  • Cisco IOS XE
  • -
    United States
CVE-2020-3452
High
High
High
High
Cisco
  • Path Traversal
  • Cisco ASA and Cisco Firepower Threat Defense
  • -
    United States
CVE-2025-5777
High
High
High
High
Citrix
  • Sensitive Data Exposure
  • Citrix NetScaler
  • Used by Ransomware
    -
    United States
CVE-2018-13379
Critical
Critical
Critical
Critical
Fortinet
  • Path Traversal
  • FortiOS
  • Used by Ransomware
    -
    United States
CVE-2019-1653
High
High
High
High
Cisco
  • Sensitive Data Exposure
  • Cisco RV320/RV325
  • -
    United States
CVE-2021-44228
Critical
Critical
Critical
Critical
Apache
  • Command Injection
  • Log4j
  • Used by Ransomware
    -
    United States
Top 10 Targeted Countries
Top 10 Targeted Countries
United States
:
43594
China
:
34231
Pakistan
:
9034
UK
:
5977
Germany
:
5267
India
:
3720
South Korea
:
3384
Singapore
:
3289
Netherlands
:
2975
France
:
2588
Actively Exploited Enterprise Vendors
Apache | Ivanti | Cisco | Atlassian | D-Link | VMware | Microsoft | Citrix | Oracle | Palo Alto Networks | Adobe | Fortinet | Netgear | Spring | F5 | Draytek | Zoho | Progress | Geoserver | JetBrains | ZyXEL | Wordpress | QNAP | SAP | SysAid | Realtek | Synacor | SolarWinds | Juniper | Hikvision | Jenkins | Drupal | Tenda | SonicWall | Zimbra | Sonatype | IBM | Sitecore | Aviatrix | PaperCut | Dassualt Systems | Gladinet | Grafana | CrushFTP | Dasan | PHPUnit - Sebastian Bergmann | cPanel | Meta | Pulse Secure | Check Point | Qlik | MobileIron | Zyxel/Billion | ConnectWise | TP-Link | vBulletin | Micro Focus | ASUS | PrimeFaces | Terramaster | PHP Foundation | MinIO | Sunhillo | Laravel | Elastic | Lime Technology | ownCloud | Fortra | nostromo | Hitachi Vantara | Linear | Webmin | Paessler | SaltStack | mongo-express | NextGen Healthcare | Barco/AWIND | Roundcube | LG | Schneider Electric | Dahua | Metabase | dotCMS | GLPI (teclib) | Sophos | WSO2 | Mitel | Langflow | CONTEC | ForgeRock | FreePBX | wftpserver.com | Versa | Commvault | NAKIVO | Kentico | Cacti | Open Source Matters, Inc/Joomla community | XWiki | Yealink | Rejetto | Telerik | Node.js | CyberPanel | Omnissa | Ruckus | GeoVision | Edimax | Wazuh | SmarterTools | Cleo | RedHat | Grandstream
Most Active Ransomware Groups
#
Industry
Country
Ransomware
1
1
Government
Industry
Germany
Country
abyss-data
2
2
Technology
Industry
Spain
Country
gunra
3
3
Telecommunications
Industry
Canada
Country
brain cipher
4
4
Legal
Industry
United States
Country
inc ransom
5
5
Gaming/Casino
Industry
United States
Country
dragonforce
6
6
Healthcare
Industry
United States
Country
cmd organization
7
7
Consumer Goods
Industry
United States
Country
play
8
8
Logistics
Industry
Brazil
Country
the gentlemen
9
9
Manufacturing
Industry
Switzerland
Country
ailock
10
10
Construction
Industry
Brazil
Country
bravox
Ransomware Posting Frequency by Group - Last 7 Days
Remotely Exploited CISA KEV CVEs Added
These vulnerabilities have been newly added to the Known Exploited Vulnerabilities (KEV) Catalog. Organizations should prioritize addressing them  to mitigate risks.
CVE-2024-21182
CVE-2026-0257
CVE-2026-48027
CVE-2026-45321
CVE-2026-8398
CVE-2009-3459
CVE-2026-48172
CVE-2026-9082
CVE-2025-34291
CVE-2026-34926
info@nstcyber.ai
San Jose CA, USA
Bangalore, India
Dubai, UAE

Platform

Continuous Threat Exposure Management
Agentic AI -Assisted Exposure Assessment & Adversarial Validation
Automated Assessments
Prioritized Risk Identification
Swift Threat Detection and Response
Cyber Threat Informed Defense (CTID)
Compliance Assurance

Use Cases

Assess Your Security Posture
Eliminate Attack Vectors
Evaluate Vendors and Partners
Meet Compliance

Company

About NST Cyber
NST Cyber Partner Program

Resources

Blogs
Videos
White Papers & Advisories
© 2025 NetSentries Technologies Inc.  All Rights Reserved.
Privacy Policy