Monthly Vulnerability Insights: July 2024
This month’s report highlights a significant increase in vulnerabilities, returning to over 1,000 advisories, similar to the counts in March, April, and May. Key points include:
- Total Advisories: 1,014 (up from 880 last month).
- Year-to-Date Increase: 42% more advisories compared to 2023
- Unassigned CVEs: the Secunia Research team identified and reported 10 vulnerabilities that lack CVE assignments, including 2 highly critical ones affecting Gentoo Linux and SAS Viya 3.x.
- Remote Attack Vector: 52.68% of reported vulnerabilities can be exploited remotely (up from 42.73% last month).
- Extremely Critical Advisories: 5 extremely critical advisories related to Microsoft zero-days were reported (up from 0 last month).
- Moderately Critical Vulnerabilities: Remain a target for hackers.
- Cyber Exploits Links:
- 139 advisories are linked to recent cyber exploits (up from 38 last month).
- 382 advisories are linked to historical cyber exploits (up from 51 last month).
- Top Vendors: Linux, Red Hat, SUSE, and Ubuntu disclosed over half of all advisories. These vendors also had the most rejected advisories, with 116 out of 183 being rejected.
- Rejection Rate: The number of rejected advisories is decreasing over the past three months, possibly indicating that the Linux Foundation is addressing community feedback.
- Networking Advisories: Avaya and Cisco contributed to more than half of all networking-related advisories.
- Threat Association: 59.57% of Secunia advisories this month have an associated threat, up from 40.34% last month.
Utilizing Threat Intelligence remains crucial for prioritizing patches and addressing vulnerabilities effectively.
Flexera’s Commitment:
Despite the challenges faced by the NVD, Flexera’s Software Vulnerability Research remains unaffected, providing timely and accurate vulnerability intelligence to ensure robust cybersecurity strategies for our clients.
Stay informed and prioritize your cybersecurity measures effectively with insights from our July report. Read the full report now to delve into the detailed analysis and stay one step ahead in protecting your assets.
Recent Comments