Summary of Vulnerabilities Most Likely to Be Exploited

14/02/2024

Summary of Vulnerabilities Most Likely to Be Exploited

By Guillermo Pereyra, Security Analyst at LACNIC CSIRT.

The following article presents a summary of the vulnerabilities that had the highest probability of being exploited during the second half of 2023.

As mentioned in our first article, the tools provided by FIRST can be used to find the vulnerabilities most likely to be exploited. Likewise, we used the NIST vulnerability classifier to discover the severity of each vulnerability.

We then filtered the vulnerabilities, prioritizing those with a higher probability of being exploited.

Figure 1. Vulnerabilities throughout the second semester ordered by their probability of being exploited.

Additional reading:

Details of some vulnerabilities

The following is a table with some critical vulnerabilities that had a greater likelihood of being exploited during the second half of last year.

Top 10 Table

(Free access, no subscription required)

CVECVSS v3.1EPSS (Q4 2023)
CVE-2019-16537.5 HIGH0.97567
CVE-2014-62717.5 HIGH0.97564
CVE-2015-72977.5 HIGH0.97564
CVE-2018-76009.8 CRITICAL0.9756
CVE-2015-163510 HIGH (CVSS v2)0.97559
CVE-2019-27259.8 CRITICAL0.97559
CVE-2017-89179.8 CRITICAL0.97555
CVE-2019-166629.8 CRITICAL0.97555
CVE-2020-59029.8 CRITICAL0.97555
CVE-2020-147509.8 CRITICAL0.97553

CVE-2019-1653 – Information disclosure vulnerability in Cisco Small Business RV320 and RV325 Routers

CVSSv3.1: 7.5 HIGH

Vulnerable versions: Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers using Firmware from 1.4.2.15 to 1.4.2.20.

Solution: Update to the newest possible version.

The views expressed by the authors of this blog are their own and do not necessarily reflect the views of LACNIC.

Subscribe
Notify of

0 Comments
Oldest
Newest Most Voted
Inline Feedbacks
View all comments