2025
Vulnerability Stats

JSON

It's April 15 and 14,046 vulnerabilities have been published in 2025.

This marks an increase of 33% compared to this time last year.

Vulnerabilities published in 2025: 14,046
Avg. new vulnerabilities each day!: 134
Increase in vulnerabilities YoY: 33%

The vulnerability statistics page is updated daily and is designed to be easily screenshotable and shareable.

2025
Vulnerability Breakdown

CRITICAL: 1,098
HIGH: 4,389
MEDIUM: 6,741
LOW: 373

Plus 1,440 vulnerabilities yet to be given a severity rating.

2025 Vulnerability Severity By Month

134

New vulnerabilities every day in 2025

Each day your organisation needs to check and patch 134 vulnerability.

Across 1000's of devices!

Vulnerabilities Trending in 2025

Top 10 Trending Vulnerabilities for 2025

Authorization Bypass in Next.js Framework by Ve...

CVE-2025-29927

VercelNext.js👾9.1CRITICAL

Stack-Based Buffer Overflow in Ivanti Connect S...

CVE-2025-0282

IvantiConnect Secure👾🟣9CRITICAL

Remote Attackers Can Gain Super-Admin Privilege...

CVE-2024-55591

FortinetFortiOS👾🟣9.8CRITICAL

Authorization Issue in iPadOS and iOS by Apple

CVE-2025-24200

AppleiPad OS👾6.1MEDIUM

Authentication Bypass in Palo Alto Networks PAN...

CVE-2025-0108

Palo Alto NetworksCloud Ngfw👾🟣5.9MEDIUM

SSRF Vulnerability in Axios HTTP Client for Bro...

CVE-2025-27152

AxiOSAxiOS👾7.7HIGH

Windows OLE Remote Code Execution Vulnerability...

CVE-2025-21298

MicrosoftWindows 10 Version 1809👾9.8CRITICAL

Sandbox Escape Vulnerability in Mojo of Google ...

CVE-2025-2783

GoogleChrome👾8.3HIGH

Spoofing Vulnerability in Microsoft Windows Fil...

CVE-2025-24071

MicrosoftWindows 10 Version 1809👾6.5MEDIUM

Mark-of-the-Web Bypass Vulnerability in 7-Zip b...

CVE-2025-0411

7-zip7-zip👾7HIGH

Pareto Principle
The 80/20 Rule

The Pareto principle states that for many outcomes, roughly 80% of consequences come from 20% of causes.

In the world of Vulnerability Management, only a small amount of CVEs introduce the majority of risk.

Tracking CVEs that generate vibrant conversation gives us a tool to reliability identify the most important vulnerabilities.

2016 - 2025 Vulnerability Severity By Year

2016

2017

127%

2018

13%

2019

2020

2021

10%

2022

24%

2023

15%

2024

40%

2025

More Vulnerabilities

Means more Exploits

Which means more Ransomware

Vulnerability Arrivals 📆

Vulnerabilities are not published in a predictable way. Every day is a vulnerable day 🤨

Vulnerability Published Matrix for 2025

Vulnerability Published Matrix for 2024

Vendor Breakdown

Wonder if your vendors are doing a good job? 🤔

Vulnerability Weighted Impact by Vendors

Impact is the sum of the CVSSv3 base score for all vulnerabilities by vendor.

WordPress

2665 Vulnerabilities

248 Exploited 👾

Linux

710 Vulnerabilities

Microsoft

424 Vulnerabilities

26 Exploited 👾

IBM

257 Vulnerabilities

4 Exploited 👾

Apple

253 Vulnerabilities

7 Exploited 👾

Adobe

160 Vulnerabilities

PHPGurukul

134 Vulnerabilities

104 Exploited 👾

Fortinet

123 Vulnerabilities

2 Exploited 👾

Google

120 Vulnerabilities

2 Exploited 👾

Qualcomm

104 Vulnerabilities

2 Exploited 👾

2025Vulnerability Stats

2025 Vulnerability Breakdown

2025 Vulnerability Severity By Month

Vulnerabilities Trending in 2025

Top 10 Trending Vulnerabilities for 2025

Authorization Bypass in Next.js Framework by Ve...

Stack-Based Buffer Overflow in Ivanti Connect S...

Remote Attackers Can Gain Super-Admin Privilege...

Authorization Issue in iPadOS and iOS by Apple

Authentication Bypass in Palo Alto Networks PAN...

SSRF Vulnerability in Axios HTTP Client for Bro...

Windows OLE Remote Code Execution Vulnerability...

Sandbox Escape Vulnerability in Mojo of Google ...

Spoofing Vulnerability in Microsoft Windows Fil...

Mark-of-the-Web Bypass Vulnerability in 7-Zip b...

Pareto PrincipleThe 80/20 Rule

2016 - 2025 Vulnerability Severity By Year

Vulnerability Arrivals 📆

Vulnerability Published Matrix for 2025

Vulnerability Published Matrix for 2024

Vendor Breakdown

Vulnerability Weighted Impact by Vendors

2025
Vulnerability Stats

2025
Vulnerability Breakdown

Pareto Principle
The 80/20 Rule