2024 Trends in Vulnerability Exploitation vulncheck.com/blog/2024…

768 CVEs were publicly reported as exploited in the wild; up 20% YoY. Spikes in volume of CVE reporting link back to key industry events and new sources. In 2024, 23.6% of KEVs were known to be exploited on or before the day their CVEs were publicly disclosed. There were over 100 unique sources to be the first to report an CVE with third-party vendors leading the charge (i.e. Security companies (e.g., CheckPoint, Aqua Security, Fortinet, F5), government agencies (e.g., DOD, CISA, NHS), and non-profits (e.g., Shadow Server)

2024 marked another banner year for threat actors targeting the exploitation of vulnerabilities. Exploitation disclosures came from various sources, including product companies, security vendors, government agencies, non-profits, and media outlets worldwide. This blog post examines broader trends across exploited vulnerabilities where exploitation was first publicly disclosed in 2024, leveraging insights from VulnCheck KEV, a free community resource launched at the beginning of 2024.