Skip to main content

CYBERSTATS

Security Intelligence

HomeTopicsVulnerabilities

Vulnerabilities

We've curated 267 cybersecurity statistics about Vulnerabilities to help you understand how software weaknesses and system flaws are being exploited by cybercriminals in 2025. This insight can guide you in fortifying your defenses effectively.

Explore Subcategories

Patching1Zero-Day Vulnerabilities1Critical Vulnerabilities1Vulnerability Management1Software Vulnerabilities1CVE1

Related Topics

API Security5Exploitability5API Vulnerabilities4Application Security3SCA3AI-related Vulnerabilities2

Top Vendors

CyCognito60Cobalt29Wallarm19Action112Black Kite11Seemplicity10

Showing 41-60 of 267 results

75% of manufacturing companies have critical vulnerabilities with a CVSS score of 8 or higher.

Black Kite10/8/2025
ManufacturingRansomware

41% of organizations cited vulnerabilities as the most common API security problem.

Salt Security10/8/2025
API

65% of manufacturing companies have at least one vulnerability listed in the CISA Known Exploited Vulnerabilities (KEV) Catalog.

Black Kite10/8/2025
ManufacturingRansomware

Exposing vulnerabilities is a top security convergence goal for 40% of German organizations.

Dynatrace10/7/2025
ObservabilityAI

Roughly half of respondents say their organisation is at best only ‘somewhat capable’ of withstanding cyber attacks targeting specific vulnerabilities.

pwc10/1/2025
Cyber attackPreparadness

35% of Boomers would avoid AI apps entirely after an AI-related vulnerability.

Legit Security10/1/2025
AIAI-created apps

41% of Boomers are more likely to worry that "AI might introduce security vulnerabilities".

Legit Security10/1/2025
AIAI-created apps

33% of consumers would be more cautious if they learned that AI-generated code caused a vulnerability in an app they used.

Legit Security10/1/2025
AIAI-created apps

26% of consumers would try to avoid all apps with AI-generated code if they learned that AI-generated code caused a vulnerability in an app they used.

Legit Security10/1/2025
AIAI-created apps

28% of Millennials worry that "AI might introduce security vulnerabilities".

Legit Security10/1/2025
AIAI-created apps

Only 6% of organisations feel confident/very capable across all vulnerabilities surveyed, given the current geopolitical landscape.

pwc10/1/2025

23% of Gen Z would avoid AI apps entirely after an AI-related vulnerability.

Legit Security10/1/2025
AIAI-created apps

Boomers are nearly 2x more likely to lose trust if they find out AI was used to develop their favorite app.

Legit Security10/1/2025
AIAI-created apps

Server security misconfigurations: 34.9% in the financial services industry (versus 27.9% average in other industries).

Cobalt9/30/2025
Financial servicesPen test

Sensitive data exposure: 10.5% in the financial services industry (versus 8.0% average in other industries).

Cobalt9/30/2025
Financial servicesPen test

Components with known vulnerabilities: 6.1% in the financial services industry (versus 5.5% average in other industries).

Cobalt9/30/2025
Financial servicesPen test

Approximately one-third of serious issues are never resolved by the organizations in the financial services industry, contributing to backlog and systemic risk.

Cobalt9/30/2025
Financial servicesPen test

Financial services firms demonstrate strengths in avoiding common, code-level flaws due to mature security programs and automated scanning (SAST/DAST). However, they struggle with vulnerabilities that require human-led testing.

Cobalt9/30/2025
Financial servicesPen test

Business logic flaws: 2.9% in the financial services industry (versus 2.3% average in other industries).

Cobalt9/30/2025
Financial servicesPen test

Server-side injection (Web/API): 4.2% in the financial services industry (versus 5.3% average in other industries).

Cobalt9/30/2025
Financial servicesPen test