Summary

Total advisories:  626 ↑  (last month: 512).

January reported more advisories than December.

Important conclusions from this month's report are:

• 108 rejected advisories have been reported
• The Secunia Research Team reported No (0) Extremely critical advisories this month (4 last month)
• 5 Zero-Day Advisory reported (Only MS Windows versions)
• Over 1,590 CVEs ( last month: 1,456) were covered in the 626 Advisories
• Threat Intelligence indicates that more Medium Vulnerabilities are targeted by hackers.
• More than half of all advisories are disclosed by 4 vendors (Redhat 16%, Ubuntu 13%, SUSE 12%, IBM 10%)
• Juniper is contributing to 50% of all Networking related Advisories.

Last month we reported that 64.66% of all Secunia Advisories had a Threat ( exploits, malware, ransomware, etc.) associated with them, this month the number has been higher to 66.45%

Using Threat Intelligence is going to help you with prioritizing what needs to be patched immediately.

Software Vulnerability – and Patch Management is becoming more and more important. Due to the ongoing Russia-Ukraine conflict, attacks on critical infrastructures in many countries are increasing. Back in 2019 (just before Covid), patching was recommended within 30 days (or 14 days for a CVSS score of 7 or higher)

Right now, hackers are able to deploy exploits within 1 week and even within 24 hours. This means that organizations need to prioritize even better to quickly patch vulnerabilities (especially the ones with threats associated with them.