While the remediation rate for serious vulnerabilities is now declining, the average time taken to fix them is increasing, according to researchers from NTT Application Security.
According to the latest AppSec Stats Flash Report, the window of opportunity for application exposure has increased in the last 6 months, with the five most common vulnerabilities remaining constant.
The time to fix vulnerabilities decreased by 3 days from 205 to 202 days, bringing the average time to fix vulnerabilities down to 202 days, a significant increase from the initial 197 days at the beginning of the year.
Remediation rates have also fallen across all vulnerabilities, with critical vulnerability rates falling from 54% at the start of the year to 48% at the end of June.
High vulnerability rates fell from 50% at the beginning of the year to 38% at the end of June
The AppSec Stats Flash Report is generated monthly and covers the time window of exposure, the vulnerability by class and time to fix.
For more information, read the original story in ZDNet.
