2022 Vulnerability Statistics Report

Grab a copy of the latest Vulnerability Statistic Report From Edgescan

What is the Vulnerability Statistics Report?

Every year a dedicated team at Edgescan compiles a statistics report using data gathered from our platform. After examining over a million endpoints we are able to determine what the current vulnerability landscape looks like. This report highlights some predictable vulnerabilities but also brings to light unexpected vulnerabilities that organizations need be aware of in order to mitigate their risk.

The annual Vulnerability Statistics Report, just like Edgescan, is always evolving in order to ensure we have full view over the expanding attack surface.

 

End-points Scanned

Vulnerabilities Discovered

False Postives flagged

Organisations

Risks & Remediations

MTTR on Full-stack

Critical Risks

High Risks

Average MTTR on Full Stack

MTTR by Industry

Public Administration (NAICS* 92)

Information (NAICS 51)

Healthcare (NAICS 62)

Vulnerabilities

Growing threats to orgs

Vulnerabilities Ages

%

Vulnerabilities between 1999 and 2016

%

Discovered in 2020

%

Were only discovered pre 2016

Web Application Layer

%

SQL Injections

%

Cross Site Scripting

%

XML external entity injection (XXE)

CVE & CWE

The Evolving Landscape

Most Common Discovered CVEs in 2021

%

CVE-2015-4000

%

CVE-2015-2808

%

CVE-2013-2566

CVE Dispersion and Clustering

%

System with at least one CVE

%

System with at least two CVEs

%

System with at least Ten CVEs

Attack Surface

Unseen Threat Within

Exposed Ports

%

HTTPS

%

HTTP

%

Secure Shell (SSH)

Exposed Remote Access

SSH

RDP

Telnet

Sign-up to receive the 2022 Vulnerability Stats Report