Vulnerabilities
We've curated 267 cybersecurity statistics about Vulnerabilities to help you understand how software weaknesses and system flaws are being exploited by cybercriminals in 2025. This insight can guide you in fortifying your defenses effectively.
Explore Subcategories
Related Topics
Showing 161-180 of 267 results
Each neglected cloud asset contains on average 115 vulnerabilities.
36% of organizations have at least one cloud asset supporting more than 100 attack paths.
62% of organizations have at least one vulnerable AI package.
Top challenges in managing cloud vulnerabilities include Budget constraints (35%), Integrating vulnerability management with existing workflows (34%), and Lack of skilled personnel (32%).
Organisations detect an average of 17 vulnerabilities in their cloud environments per week.
46% of organisations still struggle with cloud vulnerability management.
96% of organisations conduct regular cloud vulnerability assessments.
67% of organisations conduct cloud vulnerability assessments monthly or more frequently.
Recent research from Wiz highlights 6 known vulnerabilities with the underlying AI providers themselves.
A vulnerability in the Irish Government COVID-19 Vaccination Portal, present since December 2021, was disclosed in March 2024 and exposed the vaccination records of approximately one million residents.
Assets hosted by Azure showed 0.07% with critical vulnerabilities.
15% of assets hosted by AWS were vulnerable to at least one security issue or misconfiguration.
Assets hosted by cloud providers other than AWS, Google, and Azure showed approximately 10 times higher rates of critical vulnerabilities compared to AWS, Google Cloud, and Azure.
Critical vulnerabilities (CVSS 9.0 or higher) were detected on assets hosted by all cloud providers, though uncommon.
Assets hosted by AWS and Google Cloud showed 0.04% with critical vulnerabilities.
Alternative cloud and hosting providers showed rates ten times higher than AWS for assets with both critical and easily exploitable issues
38% of assets hosted by Google Cloud were vulnerable to at least one security issue or misconfiguration. This rate for Google Cloud was over 2.5x more than assets hosted by AWS.
25% of developers report being overwhelmed by the volume of vulnerabilities.
10% of assets on hosting providers other than AWS, Google, and Azure had easily exploitable vulnerabilities. This compares to 5 percent hosted on Google Cloud with easily exploitable vulnerabilities and just 2 percent on AWS and Azure with easily exploitable vulnerabilities.
AWS showed the lowest rate for assets with both critical and easily exploitable issues at 0.02%.