2024
Vulnerability Stats
It's October 6 and 29,623 vulnerabilities have been published in 2024.
This marks an increase of 38% compared to this time last year.
The vulnerability statistics page is updated daily and is designed to be easily screenshotable and shareable.
2024
Vulnerability Breakdown
- CRITICAL
- 2,334
- HIGH
- 7,286
- MEDIUM
- 10,340
- LOW
- 837
Plus 8,825 vulnerabilities yet to be given a severity rating.
2024 Vulnerability Severity By Month
106
New vulnerabilities every day in 2024
Each day your organisation needs to check and patch 106 vulnerability.
Across 1000's of devices!
Vulnerabilities Trending in 2024
Top 10 Trending Vulnerabilities for 2024
Malicious Code Discovered in xz Upstream Tarbal...
Palo Alto Networks PAN-OS Command Injection Vul...
Signal Handler Race Condition in OpenSSH's Server
Windows TCP/IP Remote Code Execution Vulnerability
Check Point Security Gateways Vulnerability All...
MSHTML Platform Spoofing Vulnerability
Remote Code Execution Vulnerability Affects Mic...
VMware ESXi Authentication Bypass Vulnerability
Apple Fixes Memory Handling Issue in iOS 17.5, ...
Newly Discovered Vulnerability Allows Attackers...
Pareto Principle
The 80/20 Rule
The Pareto principle states that for many outcomes, roughly 80% of consequences come from 20% of causes.
In the world of Vulnerability Management, only a small amount of CVEs introduce the majority of risk.
Tracking CVEs that generate vibrant conversation gives us a tool to reliability identify the most important vulnerabilities.
2015 - 2024 Vulnerability Severity By Year
More Vulnerabilities
Means more Exploits
Which means more Ransomware
Exploits are HOT ๐ฅ
So far 2024 has given us allot to think about.
66 Days
Average exploit development time in 2024
The time taken for a vulnerability being published to it being exploited.
823 Exploits
Vulnerabilities Exploited
823 of the 29,623 vulnerabilities published in 2024 have been exploited.
65 Zerodays
Zeroday
A vulnerability which is exploited before Mitre or NVD published its existance.
Only a Small Number of Vulnerabilities are Exploited
Vulnerability Arrivals ๐
Vulnerabilities are not published in a predictable way. Every day is a vulnerable day ๐คจ
Vulnerability Published Matrix for 2024
Vulnerability Published Matrix for 2023
Vendor Breakdown
Wonder if your vendors are doing a good job? ๐ค
Vulnerability Weighted Impact by Vendors
Impact is the sum of the CVSSv3 base score for all vulnerabilities by vendor.
Linux
1055 Vulnerabilities
4 Exploited ๐พ
Microsoft
799 Vulnerabilities
68 Exploited ๐พ
Adobe
475 Vulnerabilities
4 Exploited ๐พ
IBM
395 Vulnerabilities
3 Exploited ๐พ
Apple
277 Vulnerabilities
13 Exploited ๐พ
D-Link
228 Vulnerabilities
4 Exploited ๐พ
Oracle
218 Vulnerabilities
3 Exploited ๐พ
Siemens
212 Vulnerabilities
Red Hat
212 Vulnerabilities
10 Exploited ๐พ
Dell
199 Vulnerabilities