Security News > 2022 > May > Elevation of Privilege is the #1 Microsoft vulnerability category

Elevation of Privilege is the #1 Microsoft vulnerability category
2022-05-25 04:00

BeyondTrust announced the release of a report which includes the latest annual breakdown of Microsoft vulnerabilities by category and product, as well as a six-year trend analysis, providing a holistic understanding of the evolving threat landscape.

Microsoft groups vulnerabilities that apply to one or more of their products into the following main categories: Remote Code Execution, Elevation of Privilege, Security Feature Bypass, Tampering, Information Disclosure, Denial of Service, and Spoofing.

Breakdown of Microsoft vulnerabilities For the second year running, Elevation of Privilege was the #1 vulnerability category, accounting for 49% of all vulnerabilities in 2021.

"Microsoft's move to the Common Vulnerability Scoring System, now makes it easier for vulnerabilities to be cross-referenced with third-party applications that leverage affected services," said Morey Haber, CSO at BeyondTrust.

The CVSS provides a way to capture the principal characteristics of a vulnerability and produces a numerical score reflecting a vulnerability's severity level, from 0 to 10.

With the consistently high volume of Microsoft vulnerabilities, ensuring endpoints are secured is more critical than ever.


News URL

https://www.helpnetsecurity.com/2022/05/25/microsoft-vulnerabilities-breakdown/

Related news

Related vendor

VENDOR LAST 12M #/PRODUCTS LOW MEDIUM HIGH CRITICAL TOTAL VULNS
Microsoft 365 49 1366 2821 162 4398