Skip to main content
HomeTopicsVulnerability Management

Vulnerability Management

CVE trends, patch management statistics, vulnerability disclosure timelines, and remediation benchmarks.

Showing 1-20 of 97 results

78% of organizations experienced fully automated scanning tools missing critical vulnerabilities and returning false negatives.

Cobalt6/28/2026
False NegativesAutomation

95% of Anthropic Mythos disclosures have no public advisory and are not visible through CVE, NVD, GitHub advisory, or scanner-driven workflows.

Tuskira6/28/2026
Vulnerability VisibilityMythos

38% of LLM vulnerabilities were fixed while 62% remain open.

Cobalt6/28/2026
AI SecurityLLM Vulnerabilities

In 2025, vulnerabilities in security software rose 39%.

Action16/15/2026
Security SoftwareSoftware Vulnerabilities

In 2025, privilege escalation vulnerabilities in security software jumped 107%.

Action16/15/2026
Security SoftwarePrivilege Escalation

Total disclosed software vulnerabilities in enterprise environments increased 92% year-over-year in 2025.

Action16/15/2026
Software VulnerabilitiesEnterprise Security

Remote code execution (RCE) vulnerabilities surged 128% year-over-year in 2025.

Action16/15/2026
Remote Code ExecutionSoftware Vulnerabilities

In 2025, macOS privilege escalation vulnerabilities increased 5,600%.

Action16/15/2026
macOSPrivilege Escalation

In 2025, network infrastructure critical vulnerabilities increased 235%.

Action16/15/2026
Network InfrastructureCritical Vulnerabilities

In 2025, network infrastructure remote code execution (RCE) vulnerabilities rose 238%.

Action16/15/2026
Network InfrastructureRemote Code Execution

In 2025, network infrastructure elevation-of-privilege (EoP) vulnerabilities surged 266%.

Action16/15/2026
Network InfrastructurePrivilege Escalation

In 2025, browser privilege escalation vulnerabilities surged 183%.

Action16/15/2026
BrowsersPrivilege Escalation

85% of senior security and IT leaders at U.S. enterprises with 500+ employees express concern that AI-accelerated vulnerability discovery is outpacing their organization's ability to prioritize and respond.

Axiad6/15/2026
AI SecurityAI Vulnerability Discovery

Enterprise application exploitation surged 800% in 2025, making ERP, CRM, collaboration, and operational business platforms top targets.

Action16/15/2026
Enterprise ApplicationsApplication Security

Across all financial services vendors, 50.2% carry high-severity CVEs.

Black Kite6/6/2026
Financial ServicesCVEs

Only 9% of organizations remediate critical or high-severity vulnerabilities in production within 24 hours.

Cloud Security Alliance6/6/2026

74% of organizations remediate critical or high-severity vulnerabilities in production within 1 to 7 days.

Cloud Security Alliance6/6/2026

Organizations that remediate vulnerabilities in 4–7 days are breached by a known vulnerability at a 97% rate.

Cloud Security Alliance6/6/2026
Vulnerability Exploitation

Organizations that patch vulnerabilities within 24 hours are breached by a known vulnerability at a 77% rate.

Cloud Security Alliance6/6/2026
Vulnerability ExploitationPatch Management

92% of organizations prioritizing risk identification before deployment experience a known-vulnerability incident in the past year.

Cloud Security Alliance6/6/2026
Risk Idenitification