Number of 2020 vulnerabilities set to overtake last year

No Comments
Software testing

The latest report from Risk Based Security reveals that the number of vulnerability disclosures this year is back on track to reach or surpass 2019 after a decline in the first quarter.

Earlier in the year there had been a sharp decline of 19.2 percent in the number of vulnerabilities disclosed. But on the latest figures Risk Based Security's VulnDB team aggregated 17,129 vulnerabilities disclosed during the first three quarters of 2020, marking a mere 4.6 percent gap when compared to last year.

"At the end of Q1 this year, we saw what appeared to be a sharp decline in vulnerability disclosures as compared to 2019, dropping by 19.2 percent. Statistically that is huge," says Brian Martin, vice president of vulnerability intelligence at Risk Based Security. "However, as 2020 continues, we are starting to see just how large an impact the pandemic has had on vulnerability disclosures."

The report also notes that 600 vulnerabilities are still in CVE reserved status meaning that organizations and security products that rely on the CVE database won't find details of them. Microsoft has seen a 39 percent increase in vulnerabilities in Q3, leapfrogging other vendors to rise from ninth to first in the top ten list. The volume of Patch Tuesday fixes has increased too.

"Patch Tuesdays have grown to be serious undertakings and may represent an incredible burden on IT teams that can last weeks during remediation efforts," Martin concludes. "It goes without saying that as Patch Tuesday workloads increase, the time needed for remediation will follow suit. Even though the Fujiwhara storms have settled, we are starting to see that 'regular' Patch Tuesdays are consistently reaching volumes comparable to January's event. For organizations who are still relying solely on CVE/NVD, they may find that their timeline may be further extended as the number of vulnerabilities 'missed' by MITRE remains consistent."

The 2020 Q3 Vulnerability QuickView Report is available from the Risk Based Security site.

Image Credit: alphaspirit / Shutterstock

No Comments

Comments are closed.

Got News? Contact Us

Recent Headlines

Why new compliance rules are changing the game for CISOs [Q&A]

How to unlock the updated version of File Explorer in Windows 11 right now

Microsoft offers temporary workaround for 'Microsoft Outlook was not able to create a message with restricted permission' error

TerraMaster D8 Hybrid lets you easily add tons of storage to Windows, macOS, and Linux computers

Cyber security and artificial intelligence -- business value and risk

Balancing the rewards and risks of AI tools

Get 'Cyber Security and Network Security' (worth $169) for FREE

Most Commented Stories

Say goodbye to Microsoft Windows 11 and hello to Nitrux Linux 3.4.1

81 Comments

Linux fan develops a fricking amazing tool to remove all ads from Windows 11

27 Comments

Switch to Linux Lite 7.0 from Windows 11

21 Comments

Windows 11 is losing market share to Windows 10

9 Comments

Cheeseheads rejoice: Joe Biden and Microsoft melt $3.3 Billion into Wisconsin's AI future!

8 Comments

Microsoft makes the Windows 11 Start Menu expandable with Start Menu Companions

7 Comments

Start menu ads are rolling out to all Windows 11 users -- here's how to turn them off

6 Comments

Ditch Microsoft Windows 11 for a fresh start: Switch to SparkyLinux 2024.05

6 Comments

© 1998-2024 BetaNews, Inc. All Rights Reserved. Privacy Policy - Cookie Policy.