CVE CVSS Number of Posts Number of Forums CVE-2020-1472 10 38 7 CVE-2020-0796 10 52 11 CVE-2019-19781 9.8 49 10 CVE-2019-0708 9.8 38 9 CVE-2017-11882 7.8 36 12 CVE-2017-0199 7.8 13 10 CVE POPULARITY BY FREQUENCY IN FORUMS SUMMARY OF OUR ANALYSIS AND FINDINGS ORGANIZED BY YEAR Another way to check CVEs popularity is to examine the number of forums where each CVE was mentioned. During our research, we discovered an interesting finding: the CVE-2017-11882, a Microsoft Office Memory Corruption Vulnerability (CVSS:7.8) 6 , was mentioned in 12 out of 15 different forums in multiple languages. This is the highest number of forums compared to the other CVEs examined. However, the CVE-2017-11882 received 36 posts, placing it only in the fifth place (see list above), after CVE-2019-0708 (aka BlueKeep, CVSS:9.8) 7 and CVE-2020-1472 (aka Zerologon, CVSS:10) 8 that received 38 posts each. Below is a list of the “top five CVEs” by number of forums: As you can see in the list above, the CVE-2020-0796 and CVE-2019-19781 were mentioned in 11 and 10 different forums, accordingly, placing them in the second and third places in the list. The CVE-2019-0708 was mentioned in nine different forums, placing it in the fifth place after another CVE disclosed in 2017 - CVE-2017- 0199 (CVSS:7.8) 9 , a flaw in Microsoft Office that was also mentioned in 10 forums. This CVE-2017-0199 received only 13 posts and therefore, it is not among the “Top five CVEs” by number of posts. As for the “Zerologon” flaw, CVE-2020-1472, it was mentioned only in seven different forums, and therefore, it is not among the “Top five CVEs” by number of forums. CVE-2017-11882 (12 out of 15 forums) CVE-2020-0796 (11 out of 15 forums) CVE-2019-19781 (10 out of 15 forums) CVE-2017-0199 (10 out of 15 forums) CVE-2019-0708 (9 out of 15 forums) https://nvd.nist.gov/vuln/detail/CVE-2017-11882 https://nvd.nist.gov/vuln/detail/CVE-2019-0708 https://nvd.nist.gov/vuln/detail/CVE-2020-1472 https://nvd.nist.gov/vuln/detail/CVE-2017-0199 6. 7. 8. 9. 5 Vulnerability Threat Intelligence Report