This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject

A new Flexera Community experience is coming on November 25th. Click here for more information.

cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Show  only  | Search instead for 
Did you mean: 

Monthly Vulnerability Insights: July 2024

jbraak
By Level 5 Flexeran
Level 5 Flexeran

This month's report highlights a significant increase in vulnerabilities, returning to over 1,000 advisories, similar to the counts in March, April, and May. Key points include:

  • Total Advisories: 1,014 (up from 880 last month).
  • Year-to-Date Increase: 42% more advisories compared to 2023
  • Unassigned CVEs: the Secunia Research team identified and reported 10 vulnerabilities that lack CVE assignments, including 2 highly critical ones affecting Gentoo Linux and SAS Viya 3.x.
  • Remote Attack Vector: 52.68% of reported vulnerabilities can be exploited remotely (up from 42.73% last month).
  • Extremely Critical Advisories: 5 extremely critical advisories related to Microsoft zero-days were reported (up from 0 last month).
  • Moderately Critical Vulnerabilities: Remain a target for hackers.
  • Cyber Exploits Links:
    • 139 advisories are linked to recent cyber exploits (up from 38 last month).
    • 382 advisories are linked to historical cyber exploits (up from 51 last month).
  • Top Vendors: Linux, Red Hat, SUSE, and Ubuntu disclosed over half of all advisories. These vendors also had the most rejected advisories, with 116 out of 183 being rejected.
  • Rejection Rate: The number of rejected advisories is decreasing over the past three months, possibly indicating that the Linux Foundation is addressing community feedback.
  • Networking Advisories: Avaya and Cisco contributed to more than half of all networking-related advisories.
  • Threat Association: 59.57% of Secunia advisories this month have an associated threat, up from 40.34% last month.

Utilizing Threat Intelligence remains crucial for prioritizing patches and addressing vulnerabilities effectively.

 Flexera's Commitment:

Despite the challenges faced by the NVD, Flexera's Software Vulnerability Research remains unaffected, providing timely and accurate vulnerability intelligence to ensure robust cybersecurity strategies for our clients.

Stay informed and prioritize your cybersecurity measures effectively with insights from our July report. Read the full report now to delve into the detailed analysis and stay one step ahead in protecting your assets.

‎Aug 02, 2024 12:01 AM
Preview file
1157 KB