2025
Vulnerability Stats

JSON

It's January 20 and 2,697 vulnerabilities have been published in 2025.

This marks an increase of 48% compared to this time last year.

Vulnerabilities published in 2025: 2,697
Avg. new vulnerabilities each day!: 135
Increase in vulnerabilities YoY: 48%

The vulnerability statistics page is updated daily and is designed to be easily screenshotable and shareable.

2025
Vulnerability Breakdown

CRITICAL: 154
HIGH: 609
MEDIUM: 1,046
LOW: 28

Plus 860 vulnerabilities yet to be given a severity rating.

2025 Vulnerability Severity By Month

135

New vulnerabilities every day in 2025

Each day your organisation needs to check and patch 135 vulnerability.

Across 1000's of devices!

Vulnerabilities Trending in 2025

Top 10 Trending Vulnerabilities for 2025

Stack-Based Buffer Overflow in Ivanti Connect S...

CVE-2025-0282

IvantiConnect Secure👾9CRITICAL

Remote Attackers Can Gain Super-Admin Privilege...

CVE-2024-55591

FortinetFortiOS👾9.8CRITICAL

Windows Kernel Memory Information Disclosure Vu...

CVE-2025-21316

MicrosoftWindows 10 Version 18095.5MEDIUM

Reloader Vulnerability: Execution of Unsigned S...

CVE-2024-7344

RadixSmartrecovery👾6.5MEDIUM

Heap-based Buffer Overflow Vulnerability in Rsy...

CVE-2024-12084

Red HatRed Hat Enterprise Lin...👾9.8CRITICAL

Elevated Privilege Exposure in Windows Hyper-V ...

CVE-2025-21333

MicrosoftWindows 10 Version 21h2👾7.8HIGH

Profile Configuration Exposure in OpenVPN Connect

CVE-2024-8474

OpenvpnOpenvpn Connect

Remote Code Execution Vulnerability in Aviatrix...

CVE-2024-50603

AviatrixController👾10CRITICAL

Authentication Bypass Vulnerability in NETGEAR ...

CVE-2024-12847

NetgearDgn1000👾9.8CRITICAL

Pareto Principle
The 80/20 Rule

The Pareto principle states that for many outcomes, roughly 80% of consequences come from 20% of causes.

In the world of Vulnerability Management, only a small amount of CVEs introduce the majority of risk.

Tracking CVEs that generate vibrant conversation gives us a tool to reliability identify the most important vulnerabilities.

2016 - 2025 Vulnerability Severity By Year

2016

2017

127%

2018

13%

2019

2020

2021

10%

2022

24%

2023

15%

2024

40%

2025

More Vulnerabilities

Means more Exploits

Which means more Ransomware

Vulnerability Arrivals 📆

Vulnerabilities are not published in a predictable way. Every day is a vulnerable day 🤨

Vulnerability Published Matrix for 2025

Vulnerability Published Matrix for 2024

Vendor Breakdown

Wonder if your vendors are doing a good job? 🤔

Vulnerability Weighted Impact by Vendors

Impact is the sum of the CVSSv3 base score for all vulnerabilities by vendor.

Microsoft

162 Vulnerabilities

6 Exploited 👾

IBM

47 Vulnerabilities

1 Exploited 👾

Linux

36 Vulnerabilities

Huawei

28 Vulnerabilities

WordPress

22 Vulnerabilities

24 Exploited 👾

ivanti

19 Vulnerabilities

1 Exploited 👾

Qualcomm

19 Vulnerabilities

Fortinet

16 Vulnerabilities

1 Exploited 👾

Google

16 Vulnerabilities

Adobe

14 Vulnerabilities

2025Vulnerability Stats

2025 Vulnerability Breakdown

2025 Vulnerability Severity By Month

Vulnerabilities Trending in 2025

Top 10 Trending Vulnerabilities for 2025

Stack-Based Buffer Overflow in Ivanti Connect S...

Remote Attackers Can Gain Super-Admin Privilege...

Windows Kernel Memory Information Disclosure Vu...

Reloader Vulnerability: Execution of Unsigned S...

Heap-based Buffer Overflow Vulnerability in Rsy...

Elevated Privilege Exposure in Windows Hyper-V ...

Profile Configuration Exposure in OpenVPN Connect

Remote Code Execution Vulnerability in Aviatrix...

Authentication Bypass Vulnerability in NETGEAR ...

Pareto PrincipleThe 80/20 Rule

2016 - 2025 Vulnerability Severity By Year

Vulnerability Arrivals 📆

Vulnerability Published Matrix for 2025

Vulnerability Published Matrix for 2024

Vendor Breakdown

Vulnerability Weighted Impact by Vendors

2025
Vulnerability Stats

2025
Vulnerability Breakdown

Pareto Principle
The 80/20 Rule