2026
Vulnerability Stats

JSON

It's June 13 and 31,120 vulnerabilities have been published in 2026.

This marks an increase of 44% compared to this time last year.

Vulnerabilities published in 2026: 31,120
Avg. new vulnerabilities each day!: 190
Increase in vulnerabilities YoY: 44%

The vulnerability statistics page is updated daily and is designed to be easily screenshotable and shareable.

2026
Vulnerability Breakdown

CRITICAL: 2,985
HIGH: 11,658
MEDIUM: 13,553
LOW: 1,262

Plus 1,605 vulnerabilities yet to be given a severity rating.

2026 Vulnerability Severity By Month

190

New vulnerabilities every day in 2026

Each day your organisation needs to check and patch 190 vulnerability.

Across 1000's of devices!

Vulnerabilities Trending in 2026

Top 10 Trending Vulnerabilities for 2026

Vulnerability in Linux Kernel Affecting Crypto ...

CVE-2026-31431

LinuxLinux👾

Remote Code Execution Vulnerability in GitHub E...

CVE-2026-3854

GithubEnterprise Server👾

Arbitrary File Access Flaw in macOS Product by ...

CVE-2026-28910

AppleMac OS

Server-Side Request Forgery Vulnerability in Ne...

CVE-2026-44578

VercelNext.js👾

Authentication Bypass Vulnerability in cPanel a...

CVE-2026-41940

WebprosCpanel👾

Heap Buffer Overflow in NGINX Plus and NGINX Op...

CVE-2026-42945

F5Nginx Plus👾

Legacy API Interface Vulnerability in EZVIZ Pro...

CVE-2026-32683

EzvizEzviz App

Authentication Bypass in Fortinet FortiAnalyzer...

CVE-2026-24858

FortinetFortiweb👾

Path Traversal Vulnerability in UniFi Network A...

CVE-2026-22557

Ubiquiti IncUnifi Network Application

Denial of Service Vulnerabilities in React Serv...

CVE-2026-23864

MetaReact-server-dom-webpack

Pareto Principle
The 80/20 Rule

The Pareto principle states that for many outcomes, roughly 80% of consequences come from 20% of causes.

In the world of Vulnerability Management, only a small amount of CVEs introduce the majority of risk.

Tracking CVEs that generate vibrant conversation gives us a tool to reliability identify the most important vulnerabilities.

2017 - 2026 Vulnerability Severity By Year

2017

2018

13%

2019

2020

2021

10%

2022

24%

2023

15%

2024

39%

2025

20%

2026

More Vulnerabilities

Means more Exploits

Which means more Ransomware

Vulnerability Arrivals 📆

Vulnerabilities are not published in a predictable way. Every day is a vulnerable day 🤨

Vulnerability Published Matrix for 2026

Vulnerability Published Matrix for 2025

Vendor Breakdown

Wonder if your vendors are doing a good job? 🤔

Vulnerability Weighted Impact by Vendors

Impact is the sum of the CVSSv3 base score for all vulnerabilities by vendor.

WordPress

4062 Vulnerabilities

229 Exploited 👾

Google

1301 Vulnerabilities

11 Exploited 👾

Microsoft

855 Vulnerabilities

36 Exploited 👾

Linux

604 Vulnerabilities

14 Exploited 👾

Adobe

379 Vulnerabilities

1 Exploited 👾

sourcecodester

308 Vulnerabilities

185 Exploited 👾

Apache

303 Vulnerabilities

20 Exploited 👾

Apple

302 Vulnerabilities

6 Exploited 👾

Red Hat

284 Vulnerabilities