Security News > 2023 > January > Security Navigator Research: Some Vulnerabilities Date Back to the Last Millennium
Vulnerability analysis results in Orange Cyberdefenses' Security Navigator show that some vulnerabilities first discovered in 1999 are still found in networks today.
The chart below suggests that even Critical Vulnerabilities are taking around 6 months on average to resolve, but that is encouragingly at least 36% faster than the time for low-severity issues.
With an average CVSS score above 7, each of these disclosed vulnerabilities is a significant datapoint that affects our risk equations and our real exposure to threats.
Vulnerability Scanning and Penetration Testing are mechanisms we use to make sense of the vulnerabilities that may impact our security posture, understand their potential impact, prioritize and take appropriate action.
Our pentesting teams are still discovering vulnerabilities that were first identified in 2010, and our scanning teams encounter issues that date back to 1999! Indeed 47% of CVEs are 5 years old or more.
More details, like the criticality of vulnerabilities and the changes in Pentesting and VOC scanning results over time, can be found in the Security Navigator.
News URL
https://thehackernews.com/2023/01/security-navigator-research-some.html
Related news
- Zimbra Releases Security Updates for SQL Injection, Stored XSS, and SSRF Vulnerabilities (source)
- Google's March 2025 Android Security Update Fixes Two Actively Exploited Vulnerabilities (source)
- Hetty: Open-source HTTP toolkit for security research (source)
- Is Security Human Factors Research Skewed Towards Western Ideas and Habits? (source)
- Still Using an Older Version of iOS or iPadOS? Update Now to Patch These Critical Security Vulnerabilities (source)