Tenable Research in Verizon DBIR: Additional Research Analysis

New Delhi, April 25, 2025 - Vulnerability exploitation surged as the initial access vector for 20% of breaches—a 34% increase year over year and now rivalling the top initial access vector (credential abuse), according to the newly released 2025 Verizon Data Breach Investigation Report (DBIR). To dig deep into this risk, Tenable contributed enriched data on the most exploited vulnerabilities to the Verizon DBIR and published a complementary deep-drive analysis.

Tenable Research analysed over 160 million data points across our telemetry data to uncover how quickly organisations are patching the 17 high-risk CVEs Verizon highlights in the report — segmented by industry.