May was the month with the highest number of vulnerabilities in the last 18 months. 7 Zero-day Vulnerabilities are reported by Microsoft and Cisco and it was 9 last month.
The Log4j vulnerability is still being reported by vendors ( Oracle Linux 6 and IBM PureData) after 6 months.
The trend that we’ve seen for the last few months with hackers focusing on the Low and Medium Vulnerabilities has been slowed down. This month we have seen more Moderately and Highly Critical Vulnerabilities being exploited.
Important conclusions from this month's report are:
Only 1 extreme (and Zero-Day) critical Vulnerability was reported affecting all Windows operating systems.
No Browser Zero-Day Advisories were reported, which is very rare.
Threat Intelligence indicates that hackers target more Medium and Highly Vulnerabilities.
Most vulnerabilities are disclosed by Red Hat, Suse, and Ubuntu
11.77% (last month: 15.36% ) of all advisories are linked to recent cyber exploits which are significantly lower.
Last month, we reported that 56% of all Secunia Advisories had a Threat ( exploits, malware, ransomware, etc.) associated with them. This month, the number has been higher to 62.65%↑ , with an increase in the lower and medium criticality range.
Flexera SVM Threat Intelligence is going to help you with prioritizing what needs to be patched immediately.