Exploited CVEs of 2024: Lessons for Vendors and Defenders
CVE/FIRST VulnCon 2025 · Main Stage
Patrick Gity, a security researcher at Vone, delivered a compelling talk at VulnCon, shedding light on the landscape of **exploited vulnerabilities** in 2024. His presentation, titled "Exploited CVEs of 2024: Lessons for Vendors and Defenders," provided a data-driven analysis of vulnerabilities actively leveraged by threat actors in the wild. Gity's work, rooted in Vone's extensive data collection and analysis, aims to enhance transparency around exploitation evidence, offering critical insights for both product vendors and cybersecurity defenders.
AI review
Gity delivers a competent, data-driven threat intelligence briefing on 2024's exploited CVE landscape. The core thesis — that exploitation evidence should drive prioritization over raw CVSS scores — is correct and important, but it's not new. The talk's value comes from Vone's proprietary aggregation work (800+ KEVs, 100+ sources, 2000+ citations) and the pointed critique of EPSS V3's real-time limitations. It's a solid intel briefing with genuine practitioner utility, but it doesn't fundamentally advance the conversation beyond what CISA KEV + VulnCheck + GreyNoise have been saying for…