2022 Vulnerability Statistics Report
Grab a copy of the latest Vulnerability Statistic Report From Edgescan
What is the Vulnerability Statistics Report?
Every year a dedicated team at Edgescan compiles a statistics report using data gathered from our platform. After examining over a million endpoints we are able to determine what the current vulnerability landscape looks like. This report highlights some predictable vulnerabilities but also brings to light unexpected vulnerabilities that organizations need be aware of in order to mitigate their risk.
The annual Vulnerability Statistics Report, just like Edgescan, is always evolving in order to ensure we have full view over the expanding attack surface.
End-points Scanned
Vulnerabilities Discovered
False Postives flagged
Organisations
Risks & Remediations
MTTR on Full-stack
Critical Risks
High Risks
Average MTTR on Full Stack
MTTR by Industry
Public Administration (NAICS* 92)
Information (NAICS 51)
Healthcare (NAICS 62)
Vulnerabilities
Growing threats to orgs
Vulnerabilities Ages
%
Vulnerabilities between 1999 and 2016
%
Discovered in 2020
%
Were only discovered pre 2016
Web Application Layer
%
SQL Injections
%
Cross Site Scripting
%
XML external entity injection (XXE)
CVE & CWE
The Evolving Landscape
Most Common Discovered CVEs in 2021
%
CVE-2015-4000
%
CVE-2015-2808
%
CVE-2013-2566
CVE Dispersion and Clustering
%
System with at least one CVE
%
System with at least two CVEs
%
System with at least Ten CVEs
Attack Surface
Unseen Threat Within
Exposed Ports
%
HTTPS
%
HTTP
%