50 percent of organisations now carry critical security debt, which is defined as flaws left open for longer than a year.

February 27, 2025

50 percent of organisations now carry critical security debt, which is defined as flaws left open for longer than a year. — This cybersecurity statistic was published by Veracode in February 2025. The original data appears in State of Software Security 2025. For the full methodology and detailed findings, refer to the original report.

Source

View Original Report

Published on 2/27/2025

Share or Copy this stat

Frequently Asked Questions

What does this statistic say?

50 percent of organisations now carry critical security debt, which is defined as flaws left open for longer than a year. This data was published by Veracode.

Where does this data come from?

This statistic comes from State of Software Security 2025, published by Veracode on February 27, 2025. You can view the original report at https://www.veracode.com/resources/analyst-reports/state-of-software-security-2025/.

What cybersecurity topics does this cover?

This statistic was published by Veracode. Browse more statistics from Veracode.

CYBERSTATS

50 percent of organisations now carry critical security debt, which is defined as flaws left open for longer than a year.

Source

Share or Copy this stat

Frequently Asked Questions

Want More Statistics Like This?

Related Statistics

Anthropic’s Claude Sonnet 4.5 achieved a 50% pass rate on security tests.

xAI Grok 4 achieved a 55% pass rate on security tests.

Qwen3 Coder achieved a 50% pass rate on security tests.

Google Gemini 2.5 Pro achieved a 59% pass rate on security tests.

OpenAI’s standard GPT-5 achieved a 70% pass rate on security tests.

The pass rates for Cross-Site Scripting (XSS) vulnerabilities remained below 14% across all evaluated models.

Stay Ahead of Cyber Threats