The WannaCry attacks and Equifax breach – to name a few high profile cases – sounded the alarm in many boardrooms and raised questions about how much effort businesses put into identifying and mitigating the exploitation risk of software vulnerabilities
As the leading provider of Software Vulnerability Management, Flexera has compiled their Vulnerability Review 2018 – Global Trends which:
You can download the full Vulnerability Review 2018 – Global Trends here, but the Sigma team have compiled the key findings for you to have a read through below:
This year’s review reveals a continuing surge in vulnerability growth. An all-time high of 19,954 vulnerabilities in 1865 applications from 259 vendors in 2017, a 14% increase from 2016. Companies are being exposed to an escalating number of security risks, emphasising the need to maintain continuous visibility of their software assets and the vulnerabilities affecting them. Companies also need to ensure critical vulnerabilities are prioritised and addressed before exploitation risk increases.
The Vulnerability Review offers hope for companies seeing to minimise their risk of incidents. In 2017, 86% of vulnerabilities had a patch available on the day of disclosure – slightly higher compared to 81% in 2016.
In addition, zero-days – instances in which a vulnerability is exploited before public disclosure – remain rare. Only 14 of the 19,954 known vulnerabilities in 2017 were zero-days, a 40% drop from 2016.
Software Vulnerability Management was designed to solve this problem by helping organisations identify vulnerable applications and systems in their environments so they can be prioritised, and remediate the problem via integrated patch management.
Implementing Flexera Software Vulnerability Manager makes it possible for organisations to bridge common organisational gaps between IT Security and IT Operations by delivering accurate patch assessment for security patches and tools for operations to perform remediation.