Important conclusions from this month's report are:
108 rejected advisories have been reported
The Secunia Research Team reported No (0)Extremely critical advisories this month (4 last month)
5Zero-Day Advisory reported (Only MS Windows versions)
Over 1,590 CVEs ( last month: 1,456) were covered in the 626 Advisories
Threat Intelligence indicates that more Medium Vulnerabilities are targeted by hackers.
More than half of all advisories are disclosed by 4 vendors (Redhat 16%, Ubuntu 13%, SUSE 12%, IBM 10%)
Juniper is contributing to 50% of all Networking related Advisories.
Last month we reported that 64.66% of all Secunia Advisories had a Threat ( exploits, malware, ransomware, etc.) associated with them, this month the number has been higher to 66.45%
Using Threat Intelligence is going to help you with prioritizing what needs to be patched immediately.
Software Vulnerability – and Patch Management is becoming more and more important. Due to the ongoing Russia-Ukraine conflict, attacks on critical infrastructures in many countries are increasing. Back in 2019 (just before Covid), patching was recommended within 30 days (or 14 days for a CVSS score of 7 or higher)
Right now, hackers are able to deploy exploits within 1 week and even within 24 hours. This means that organizations need to prioritize even better to quickly patch vulnerabilities (especially the ones with threats associated with them.