Problem
us-16-Weston-Windows-10-Mitigation-Improvements
us-16-Weston-Windows-10-Mitigation-Improvements
Create successful ePaper yourself
Turn your PDF publications into a flip-book with our unique Google optimized e-Paper software.
# of CVEs<br />
Analysis: High-level vulnerability & exploit trends<br />
450<br />
# of Microsoft RCE/EOP CVEs by patch year<br />
% of Microsoft RCE & EOP CVEs<br />
exploited within 30 days of patch<br />
400<br />
350<br />
300<br />
250<br />
200<br />
150<br />
100<br />
50<br />
0<br />
414<br />
300<br />
287<br />
218<br />
199<br />
155<br />
141<br />
133<br />
121<br />
111<br />
2006 2007 2008 2009 2010 2011 2012 2013 2014 2015<br />
100%<br />
95%<br />
90%<br />
85%<br />
80%<br />
75%<br />
70%<br />
65%<br />
60%<br />
55%<br />
50%<br />
45%<br />
40%<br />
35%<br />
30%<br />
25%<br />
20%<br />
15%<br />
10%<br />
5%<br />
0%<br />
97<br />
24<br />
93 114 130<br />
18 19 25<br />
157<br />
61<br />
156<br />
43<br />
116<br />
25<br />
266 282 396<br />
21 18 18<br />
2006 2007 2008 2009 2010 2011 2012 2013 2014 2015<br />
Patch Year<br />
Patch Year<br />
Total<br />
Linear (Total)<br />
Exploited within 30 days of patch<br />
Not known to be exploited<br />
Vulnerabilities are increasing while evidence of actual exploits is decreasing due to mitigation investments