Vulnerabilities
We've curated 342 cybersecurity statistics about Vulnerabilities to help you understand how software weaknesses and system flaws are being exploited by cybercriminals in 2025. This insight can guide you in fortifying your defenses effectively.
Explore Subcategories
Related Topics
Showing 281-300 of 342 results
57% of respondents report automation has reduced the time to respond to vulnerabilities.
Managing the sheer volume of vulnerabilities and false positives were the biggest challenges in securing code, cited by 78% of respondents.
34% of respondents report seeing significant improvements in vulnerability response time due to automation.
Open-source risks and cloud misconfigurations followed supply chain vulnerabilities closely at 73%.
91% of organizations experience delays in vulnerability remediation.
Over 40,000 new vulnerabilities were added to the National Vulnerability Database in 2024. This marks a 39% rise from 2023.
25% of reported security issues in Agentic AI remain open.
Over 700 issues in Agentic AI repositories remain unaddressed.
60% of top vulnerabilities found in Agentic AIwere access control-related
86% of security alerts escalate into tickets, which indicates that most alerts still require human validation.
86% of security alerts escalate into tickets, which indicates that most alerts still require human validation.
Prompts specifying a need for security or requesting OWASP best practices produced more secure results, yet still yielded some code vulnerabilities for 5 out of the 7 LLMs tested.
When prompted to generate secure code, GPT-4o still produced insecure outputs vulnerable to 8 out of 10 issues.
Some open security issues in Agentic AI are lingering for 1,200-plus days.
In response to simple, “naive” prompts, all LLMs tested generated insecure code vulnerable to at least 4 of the 10 common CWEs.
With naive prompts, ChatGPT scored a 1.5/10 secure code result.
Claude 3.7 Sonnet scored 6/10 secure code result using naive prompts.
OpenAI’s GPT-4o had the lowest performance, scoring a 1/10 secure code result using "naive" prompts.
Claude 3.7 Sonnet scored 10/10 with security-focused prompts.
There was a 34% surge globally in vulnerability exploitation as an initial attack vector.