Find notable cyber news and cases, enriched with sources, timelines, and signals.
Home Browse News Feed Stats Watchlists Beta About Contact

Newly disclosed CVSS 7 to 10 vulnerabilities accelerated exploitation wave

Exploitation Wave
First reported
Last updated
Happening score
H score 26
1 unique sources, 1 articles

Summary

Hide ▲

Exploitation of newly disclosed CVSS 7 to 10 vulnerabilities surged 105% YoY, shrinking the time defenders have to react and patch. The median disclosure-to-CISA KEV inclusion window fell from 8.5 days to five days, while the mean dropped from 61 days to 28.5 days. Attackers are now turning exposure into weaponization in days, and in some cases, minutes, especially against unpatched edge infrastructure and other exposed services. The wave raises the risk of rapid compromise across multiple products and makes early patching and exposure reduction far more urgent.

Related Happenings

CERT-In 12-hour KEV remediation guidance

Advisory/Mitigation
First: 26.05.2026 13:30 Last: 26.05.2026 13:30 Sources 1

About this happening: CERT-In set a **12-hour** expectation for containing or remediating **known exploited vulnerabilities** on **internet-facing and crown-jewel systems**, sharply shortening response...

Open Happening

CERT-In issues 12-hour patch guidance for Indian organizations

Public Sector Action
First: 26.05.2026 13:30 Last: 26.05.2026 13:30 Sources 1

About this happening: **CERT-In** published new guidance on **May 25** urging Indian organizations to patch **actively exploited internet-facing vulnerabilities** within **12 hours**, tightening respon...

Open Happening

Verizon 2026 DBIR shows vulnerability exploitation as the top breach access trend in 2025

Target Trend
First: 20.05.2026 03:04 Last: 20.05.2026 03:04 Sources 1

About this happening: **Vulnerability exploitation** became the leading breach access vector in **2025**, increasing compromise risk across **31,000 incidents** and **22,000+ confirmed breaches**. **Un...

Open Happening

NIST CVE/NVD prioritization shift

Public Sector Action
First: 17.04.2026 00:47 Last: 17.04.2026 00:47 Sources 1

About this happening: **NIST** is **changing** its **CVE/NVD prioritization** so that, starting **April 15, 2026**, it will provide full details only for a **subset of CVEs**. The shift matters because...

Open Happening

NIST/NVD risk-based CVE enrichment change

Public Sector Action
First: 16.04.2026 15:43 Last: 16.04.2026 15:43 Sources 1

About this happening: **NIST** said the **US National Vulnerability Database (NVD)** will switch to a **risk-based CVE enrichment** model to cope with backlog growth. The change will **drop enrichment...

Open Happening

Timeline

  1. 18.03.2026 15:00 2 articles · 2mo ago

    Rapid7 reports compressed disclosure-to-exploitation windows

    Technical Analysis Update

    Rapid7 reports that AI and automation accelerated exploitation in 2025, shrinking the median time from vulnerability publication to CISA’s Known Exploited Vulnerabilities (KEV) catalog from 8.5 days to five days and the mean from 61 days to 28.5 days. The same analysis says confirmed exploitation of newly disclosed CVSS 7 to 10 vulnerabilities rose from 71 in 2024 to 146 in 2025, while affected organizations faced faster weaponization of exposed services, weak identity controls, and unpatched edge infrastructure.

    Show sources
    Open in new tab