2020 Vulnerability Intelligence Report

The 2020 Vulnerability Intelligence Report examines 50 vulnerabilities from 2020 to highlight exploitation patterns, explore attacker use cases, and offer a practical framework for understanding new security threats as they arise. Every CVE in this report dataset includes a defined threat status (including whether actively exploited vulnerabilities were exploited widely or in a more limited, targeted fashion), vulnerability class, and attacker utility. Report findings and data include:

  • 14 vulnerabilities that became widespread threats and posed substantial risks to organizations of all sizes in 2020
  • Nine vulnerabilities that functioned as network pivots and provided opportunities for external attackers to gain internal network access by exploiting VPNs, firewalls, or other internet-facing technologies
  • A look at exploitability trends across vulnerability classes
  • An evaluation of prominent patch bypasses or incomplete patches, the majority of which circumvent fixes for known-exploited or high-value parent vulnerabilities
  • A spotlight section on vulnerability suites affecting operational technology (OT) and Internet of Things (IoT) technologies co-authored by Rapid7’s partners at SCADAfence

Read the full report here to explore widespread, targeted, and impending threats from 2020.

    Please complete the form below to access this research:

    Business E-mail Address

    First Name

    Last Name

    Company

    Job Title

    Company Size

    Industry

    Address

    City

    State / Province

    Zip / Postal Code

    Country

    Business Phone Number

    What is your top priority when it comes to improving your security posture?

    I would like to receive information from suppliers sponsoring this content and willing to share the information above with Rapid7.

    You are receiving this email on behalf of our partner Rapid7. Please check the appropriate boxes below, indicating the ways in which you would like to receive communication from our third party affiliates.

    I would like to receive communication by emailI would like to receive communication by telephone

    Your privacy is a top concern for us at Knowledge Hub Media. We’ll only use your personal information to provide you with the content, products and/or services you’ve requested from us. By entering your contact information and clicking on the “submit” button below, you are confirming that you have carefully read Knowledge Hub Media’s Terms of Use agreement, and Privacy Policy, and agree to be legally bound by all such terms.

    Yes, I agree to the Terms of Use Agreement.

    Yes, I agree to the Privacy Policy.

    [group group-712]

    The third party vendor sponsoring this content may wish to contact you regarding products and/or services as they relate to this white paper/research. Please check the appropriate boxes below, indicating the ways in which you would like to receive communication from our third party affiliates:

    Yes, I would like to receive communication by email.Yes, I would like to receive communication by telephone.Yes, I would like to receive communication by postal mail.

    Knowledge Hub Media would also like to keep in touch regarding related content, white papers, business/technology research and upcoming events in your area of expertise. Please check the appropriate boxes below to opt-in:

    Yes, Knowledge Hub Media may contact me via email.Yes, Knowledge Hub Media may contact me via telephone.Yes, Knowledge Hub Media may contact me via postal mail.

    You can easily change your communication and consent preferences at any time. Opt-out of receiving communication from Knowledge Hub Media and/or our third party affiliates by easily updating your personally identifiable data and contact preferences here: Update Communication Preferences

    [/group]