Vulnerability trends
How is the CVE corpus changing over time?
All charts here derive from the CVE corpus our pipeline ingests (NVD + EPSS + per-CVE annotations). These are vulnerability-side signals — what is published, when, with what severity. Real-world exploitation lives in the Threat trends page.
Last updated: 2026-07-04 00:54 UTC
CVE publication volume — weekly
Top weaknesses (CWE) — rank shift across years
CVSS distribution by quarter
Exploit pressure of the CVE corpus
Substantively-modified CVEs — weekly
Product categories compared — eight metrics side by side
Severity impact of LLM-assisted vulnerability discoveryAI
Section A — Direct attribution (high-confidence, narrow)
396 CVEs detected with explicit LLM-discovery credit.
By LLM family: Anthropic: 250, Openai: 153, Google: 1.
Specific models cited (top 8): Claude (153), OpenAI (151), Anthropic (71), GPT5 (2), Claude Opus 4.6 (2), Claude Code (1), Project Glasswing (1), Gemini Pro (1).
| Metric | Mythos-credited (n / mean) | All other CVEs (n / mean) | Difference | 95% CI | p (Holm) | Hedges’ g / RD |
|---|---|---|---|---|---|---|
| CVSS base | 396 / 7.76 | 65,267 / 6.75 | +1.014 | [+0.846, +1.180] | 3.8e-33 | +0.597 |
| EPSS | 396 / 0.0053 | 65,267 / 0.0074 | -0.002 | [-0.004, +0.002] | 1 | -0.048 |
| KEV-listing rate | 396 / 0.0% | 65,267 / 0.3% | -0.003 | [-0.004, -0.003] | 1 | -0.003 |
| Risk Priority | 396 / 52.92 | 65,267 / 45.43 | +7.491 | [+6.129, +8.837] | 1.2e-28 | +0.534 |
Section B — Cohort × time-window DiD
| Metric | Treated pre (n / mean) | Treated post (n / mean) | Control pre (n / mean) | Control post (n / mean) | DiD | 95% CI | p (Holm) | Hedges’ g / RD |
|---|---|---|---|---|---|---|---|---|
| CVSS base | 8,028 / 6.49 | 4,105 / 6.96 | 40,258 / 6.74 | 13,272 / 6.92 | +0.286 | [+0.218, +0.355] | 1.9e-57 | +0.309 |
| EPSS | 8,028 / 0.0068 | 4,105 / 0.0051 | 40,258 / 0.0084 | 13,272 / 0.0051 | +0.002 | [-0.000, +0.003] | 0.47 | -0.038 |
| KEV-listing rate | 8,028 / 0.9% | 4,105 / 0.4% | 40,258 / 0.3% | 13,272 / 0.2% | -0.004 | [-0.007, -0.001] | 0.0074 | -0.005 |
| Risk Priority | 8,028 / 43.98 | 4,105 / 46.82 | 40,258 / 45.25 | 13,272 / 46.64 | +1.448 | [+0.890, +2.002] | 1.4e-37 | +0.223 |
Distribution split — cohort × period
Per-vendor: more vulns AND more severe?
Robustness — matched 3-week pre/post window
| Metric | Treated pre (n / mean) | Treated post (n / mean) | Control pre (n / mean) | Control post (n / mean) | DiD | 95% CI | p (Holm) | Hedges’ g / RD |
|---|---|---|---|---|---|---|---|---|
| CVSS base | 602 / 6.57 | 771 / 7.03 | 3,877 / 6.95 | 2,819 / 6.68 | +0.726 | [+0.543, +0.912] | 1.6e-08 | +0.304 |
| EPSS | 602 / 0.0027 | 771 / 0.0064 | 3,877 / 0.0071 | 2,819 / 0.0058 | +0.005 | [+0.002, +0.009] | 0.32 | +0.104 |
| KEV-listing rate | 602 / 0.3% | 771 / 0.5% | 3,877 / 0.2% | 2,819 / 0.0% | +0.003 | [-0.004, +0.010] | 0.7 | +0.002 |
| Risk Priority | 602 / 44.19 | 771 / 48.24 | 3,877 / 46.71 | 2,819 / 44.62 | +6.150 | [+4.659, +7.653] | 1.6e-09 | +0.331 |
Parallel-trends check (pre-paper)
Active anomalies — Vulnerability lensAI
CWE-125 rising 55% YoY: 830 CVEs in H1 2026 vs 534 in H1 2025
ATT&CK T1105 rising 88% YoY: 171 CVE-associations in H1 2026 vs 91 in H1 2025
CWE-119 rising 29% YoY: 754 CVEs in H1 2026 vs 585 in H1 2025
CWE-284 rising 97% YoY: 882 CVEs in H1 2026 vs 448 in H1 2025
CWE-190 rising 84% YoY: 322 CVEs in H1 2026 vs 175 in H1 2025
CWE-601 rising 61% YoY: 203 CVEs in H1 2026 vs 126 in H1 2025
CWE-94 rising 77% YoY: 575 CVEs in H1 2026 vs 325 in H1 2025
CWE-200 rising 70% YoY: 649 CVEs in H1 2026 vs 381 in H1 2025
CWE-416 rising 106% YoY: 1,214 CVEs in H1 2026 vs 590 in H1 2025
ATT&CK T1212 rising 117% YoY: 165 CVE-associations in H1 2026 vs 76 in H1 2025
ATT&CK T1070.004 rising 101% YoY: 139 CVE-associations in H1 2026 vs 69 in H1 2025
CWE-770 rising 113% YoY: 470 CVEs in H1 2026 vs 221 in H1 2025
CWE-77 rising 65% YoY: 566 CVEs in H1 2026 vs 344 in H1 2025
ATT&CK T1098 rising 101% YoY: 177 CVE-associations in H1 2026 vs 88 in H1 2025
CWE-400 rising 120% YoY: 476 CVEs in H1 2026 vs 216 in H1 2025
CWE-287 rising 108% YoY: 369 CVEs in H1 2026 vs 177 in H1 2025
ATT&CK T1565.001 rising 100% YoY: 310 CVE-associations in H1 2026 vs 155 in H1 2025
ATT&CK T1083 rising 118% YoY: 168 CVE-associations in H1 2026 vs 77 in H1 2025
CWE-269 rising 117% YoY: 330 CVEs in H1 2026 vs 152 in H1 2025
ATT&CK T1552.001 rising 254% YoY: 418 CVE-associations in H1 2026 vs 118 in H1 2025
ATT&CK T1557 rising 406% YoY: 263 CVE-associations in H1 2026 vs 52 in H1 2025
ATT&CK T1078 rising 321% YoY: 278 CVE-associations in H1 2026 vs 66 in H1 2025
ATT&CK T1552 rising 619% YoY: 424 CVE-associations in H1 2026 vs 59 in H1 2025
ATT&CK T1046 rising 266% YoY: 194 CVE-associations in H1 2026 vs 53 in H1 2025
ATT&CK T1505.003 rising 114% YoY: 519 CVE-associations in H1 2026 vs 242 in H1 2025
ATT&CK T1190 rising 219% YoY: 15,442 CVE-associations in H1 2026 vs 4,842 in H1 2025
ATT&CK T1210 rising 115% YoY: 437 CVE-associations in H1 2026 vs 203 in H1 2025
ATT&CK T1059.008 rising 71% YoY: 128 CVE-associations in H1 2026 vs 75 in H1 2025
ATT&CK T1068 rising 327% YoY: 4,928 CVE-associations in H1 2026 vs 1,155 in H1 2025
ATT&CK T1499.004 rising 431% YoY: 3,504 CVE-associations in H1 2026 vs 660 in H1 2025
ATT&CK T1005 rising 349% YoY: 1,463 CVE-associations in H1 2026 vs 326 in H1 2025
ATT&CK T1204.002 rising 346% YoY: 865 CVE-associations in H1 2026 vs 194 in H1 2025
ATT&CK T1485 rising 218% YoY: 213 CVE-associations in H1 2026 vs 67 in H1 2025
ATT&CK T1566.002 rising 119% YoY: 320 CVE-associations in H1 2026 vs 146 in H1 2025
CWE-862 rising 53% YoY: 1,732 CVEs in H1 2026 vs 1,133 in H1 2025
CWE-22 rising 142% YoY: 1,358 CVEs in H1 2026 vs 562 in H1 2025
CWE-78 rising 154% YoY: 802 CVEs in H1 2026 vs 316 in H1 2025
CWE-918 rising 188% YoY: 788 CVEs in H1 2026 vs 274 in H1 2025
CWE-20 rising 220% YoY: 977 CVEs in H1 2026 vs 305 in H1 2025
CWE-98 rising 102% YoY: 507 CVEs in H1 2026 vs 251 in H1 2025
CWE-352 falling 54% YoY: 596 CVEs in H1 2026 vs 1,305 in H1 2025
CWE-863 rising 102% YoY: 586 CVEs in H1 2026 vs 290 in H1 2025
CWE-639 rising 245% YoY: 579 CVEs in H1 2026 vs 168 in H1 2025
CWE-121 rising 155% YoY: 456 CVEs in H1 2026 vs 179 in H1 2025
CWE-476 falling 34% YoY: 567 CVEs in H1 2026 vs 860 in H1 2025
CWE-306 rising 193% YoY: 466 CVEs in H1 2026 vs 159 in H1 2025
CWE-502 rising 73% YoY: 554 CVEs in H1 2026 vs 320 in H1 2025
CWE-122 rising 127% YoY: 475 CVEs in H1 2026 vs 209 in H1 2025
CWE-120 falling 1% YoY: 403 CVEs in H1 2026 vs 409 in H1 2025
CWE-434 rising 6% YoY: 345 CVEs in H1 2026 vs 325 in H1 2025
CWE-362 rising 54% YoY: 335 CVEs in H1 2026 vs 217 in H1 2025
CWE-266 rising 47% YoY: 314 CVEs in H1 2026 vs 213 in H1 2025
CWE-285 rising 182% YoY: 209 CVEs in H1 2026 vs 74 in H1 2025
CWE-401 falling 33% YoY: 275 CVEs in H1 2026 vs 408 in H1 2025
CWE-295 rising 165% YoY: 204 CVEs in H1 2026 vs 77 in H1 2025
ATT&CK T1203 rising 431% YoY: 1,938 CVE-associations in H1 2026 vs 365 in H1 2025
ATT&CK T1059.004 rising 362% YoY: 1,085 CVE-associations in H1 2026 vs 235 in H1 2025
ATT&CK T1189 rising 721% YoY: 1,067 CVE-associations in H1 2026 vs 130 in H1 2025
ATT&CK T1059 rising 313% YoY: 520 CVE-associations in H1 2026 vs 126 in H1 2025
ATT&CK T1059.007 rising 93% YoY: 1,652 CVE-associations in H1 2026 vs 856 in H1 2025
ATT&CK T1539 rising 78% YoY: 677 CVE-associations in H1 2026 vs 381 in H1 2025
ATT&CK T1185 rising 315% YoY: 1,047 CVE-associations in H1 2026 vs 252 in H1 2025
Past anomalies (resolved)
Anomalies that triggered on a previous run but no longer do. Showing the most recent 9.
CWE-367 rising 218% YoY: 162 CVEs in H1 2026 vs 51 in H1 2025
CWE-288 rising 80% YoY: 153 CVEs in H1 2026 vs 85 in H1 2025
ATT&CK T1213.006 falling 50% YoY: 481 CVE-associations in H1 2026 vs 965 in H1 2025
ATT&CK T1078.001 rising 88% YoY: 98 CVE-associations in H1 2026 vs 52 in H1 2025
CWE-404 rising 111% YoY: 150 CVEs in H1 2026 vs 71 in H1 2025
Σ EPSS of newly-published CVEs falling 55% YoY: 14.2 this month (6,955 CVEs) vs 32.0 same month prior year (3,981 CVEs)
Σ EPSS of newly-published CVEs falling 62% YoY: 13.7 this month (5,831 CVEs) vs 36.1 same month prior year (4,035 CVEs)
KEV additions accelerating 107% YoY: 31 CVEs added to CISA KEV in 2026-04 vs 15 in 2025-04
ATT&CK T1204.001 falling 52% YoY: 140 CVE-associations in H1 2026 vs 289 in H1 2025