2022 Microsoft Vulnerabilities Report
What will you learn in this year’s edition?
The ninth annual Microsoft Vulnerabilities Report returns to provide a digestible analysis of the current Microsoft vulnerabilities landscape — even after recent changes in vulnerability reporting.
Two years ago, Microsoft announced changes to their Microsoft Security Update Guide, and a switch to the industry-standard Common Vulnerability Scoring System (CVSS). While the new reporting system brings benefits, it also creates some visibility challenges.
As with prior versions, this year’s Microsoft Vulnerability report is designed to help you better understand and address risks within the Microsoft ecosystem.
Key Findings:
• 1,212 reported vulnerabilities in total — 5% lower than last year.
• For the second year in a row, Elevation of Privilege was the #1 vulnerability category.
• 47% decrease in Critical vulnerabilities year/year — the lowest number since this report began.
• 349 new vulnerabilities in IE & Edge — almost 4x the prior year total, and a new record.
Read the full report for a deeper dive into these findings. You’ll also gain prescriptive advice for effectively addressing vulnerabilities, alongside access to the expert commentary of noteworthy industry leaders.