How critical are unpatched vulnerabilities (0-day exploits) in their impact on the latest version of Windows? I've been able to get an interesting piece of information that indicates the trend since 2015.
Advertising
The following overview is by Microsoft employee Matt Miller, who works in the Microsoft security team. He posted the following on Twitter.
This highlights that staying current with the latest version of Windows has remained a good defense for many of the zero day exploits observed in the wild that target Windows CVEs due in large part to the mitigations being added each release
— Matt Miller (@epakskape) July 23, 2019
Only about 40% of the 0-day exploits can work in the current version of Windows, since 66% of the vulnerabilities have already been considered. With Windows 10 this always refers to the last build like e.g. version 1903. Well, statistics is not very helpful in case of a problem.
Advertising
