Skip to main content

34-Month Update with CISA KEV

·206 words·1 min
Posts cisa kev vulnmgmt
Table of Contents
CISA_KEV - This article is part of a series.
Part 7: This Article

CISA KEV has been released 34 months. Today, there are total of 1159 (+33) CVE been added to CISA KEV catalog.

CISA Catalog of Known Exploited Vulnerabilities [ 2024.08.28/1159 ]

Updates
#

As of today, there are total of 1143 CVE have overdue, and another 16 will due in Sep 2024.

Highlights (within CISA KEV catalog):

  • The top-5 vendors with highest number of vulnerabilities remain the same (total 184 vendors).
  • The top-5 vendors hold 573 (around 49%) of all the 1159 CVEs.
  • The top-5 vulnerable products remain the same (total 475 products).
  • There are 252 (or ~22%) CVE found at the top-5 vulnerable products.
  • One difference is, Chromium V8 (32) has overtook Internet Explorer (32) as the third position in top-vulnerable products.
  • The mean value increases to 96.58 (was 93.83).
  • The top-5 months where distribution of KEV is higher than mean remain the same (Mar, Apr, May Jun, Nov).

Current State
#

MicrosoftAppleCiscoAdobeGoogleothers
29875726860586

WindowsMultiple Products (Apple)Chromium V8Internet ExplorerFlash Playerothers
12138323229907

mean_val=96.58333333333333

JanFebMarAprMayJunJulAugSepOctNovDec
28321321642411607059634512540
CISA_KEV - This article is part of a series.
Part 7: This Article

Related

32-Month Update with CISA KEV
·188 words·1 min
Posts cisa kev vulnmgmt
Analysis updates of CISA KEV catalog.
30-Month Update with CISA KEV
·188 words·1 min
Posts cisa kev vulnmgmt
Analysis updates of CISA KEV catalog.
State of KEV After 28 months
·187 words·1 min
Posts cisa kev vulnmgmt
Analysis of CISA KEV catalog.