cd /news/ai-safety/rising-cves-in-the-ai-epoch · home topics ai-safety article
[ARTICLE · art-45836] src=blog.apnic.net ↗ pub= topic=ai-safety verified=true sentiment=· neutral

Rising CVEs in the AI epoch

A FIRST blog forecast reveals CVE volumes are tracking 46% above original projections, driven by AI-assisted discovery and structural reporting changes, with an estimated 66,000 vulnerabilities expected in 2026. The report argues the surge reflects improved visibility rather than declining software quality, as the subset of exploited vulnerabilities remains flat, shifting the defender challenge from discovery to prioritization.

read3 min views1 publishedJul 1, 2026
Rising CVEs in the AI epoch
Image: Blog (auto-discovered)
[Kelly Sikkema](https://unsplash.com/@kellysikkema?utm_source=unsplash&utm_medium=referral&utm_content=creditCopyText)on

[Unsplash](https://unsplash.com/photos/traffic-light-sign-underwater-_whs7FPfkwQ?utm_source=unsplash&utm_medium=referral&utm_content=creditCopyText).

A recent update on the FIRST blog highlights a significant shift in the 2026 vulnerability landscape. In The 2026 Vulnerability Forecast Update: Navigating the AI Epoch, the FIRST Forecasting team, Jerry Gamblin and Eireann Leverett, cut through the noise with new mid-year data showing a sharp rise in Common Vulnerabilities and Exposure (CVE) volumes driven by AI-assisted discovery and structural changes in reporting, while reframing what this surge actually means for defenders in an emerging ‘AI epoch’.

At first glance, the headline figure is striking. CVE volume is tracking more than 46% above the original forecast, pointing to roughly 66,000 vulnerabilities for the year. However, the authors caution against treating this as a crisis. Instead, they argue that the surge reflects predictable structural shifts, particularly the rapid scaling of AI‑assisted discovery and expanded vulnerability cataloguing.

Their central point is simple. More vulnerabilities do not necessarily mean more risk.

The report shows how autonomous and semi‑autonomous AI systems are reshaping discovery workflows. Tools such as Anthropic’s experimental ‘Mythos’ agent and OpenAI’s GPT‑5.4‑Cyber accelerate bug identification far beyond human-only capability. Real examples, including Mozilla’s AI‑assisted bug hunting pipeline, show how teams can surface and resolve hundreds of issues in a single release cycle. This is not incremental improvement. It is a steep change.

AI is only part of the story. The authors also highlight structural drivers of volume. These include backlog clearing by CVE Numbering Authorities (CNAs), growth in GitHub Security Advisories, and continued expansion of the global software ecosystem. Many open-source projects are only now receiving sustained scrutiny. In short, we are not just finding more bugs — we are looking in places we largely ignored before.

This context matters. The rise in CVEs does not simply reflect declining software quality. It also reflects improved visibility and broader coverage.

The report’s ‘rain versus flood’ analogy is particularly useful. Total disclosure volume (‘rainfall’) has increased sharply. Yet the subset of vulnerabilities that matter most — those with confirmed exploitation (CISA KEV) or high exploit likelihood (EPSS >10%) — remains largely flat. The message is clear. The signal‑to‑noise ratio is worsening, not the underlying threat.

For defenders, this shifts the challenge. The issue is no longer discovering vulnerabilities, but prioritizing them effectively. Triage, validation, and response are now the bottlenecks. Human capacity remains limited, especially for verification, coordinated disclosure, and detection engineering. Writing reliable exploit signatures and contextualizing risk at scale are emerging pain points. The report also challenges assumptions about operational impact. Despite the increase in CVEs, software release cadences have remained stable. While more vulnerabilities are identified per release, organizations are not shipping updates more often. As a result, the day‑to‑day patching burden may remain relatively steady in the near term, even as upstream workload grows for developers and the Product Security Incident Response Team (PSIRT).

The authors describe a growing ‘race’ between offensive and defensive AI. The same technologies that accelerate discovery and exploit development also enable automated remediation, faster patching, and improved detection. The key question for late 2026 is not whether AI increases risk, but which side can operationalize it more effectively.

A forward‑looking section explores ‘ephemeral software’. As AI‑generated, on‑demand applications become more common, many ‘micro‑vulnerabilities’ will never appear in formal registries such as CVE. These untracked flaws create distributed and localized risk that traditional vulnerability management cannot address. The proposed response includes AI‑driven asset discovery, dynamic cataloguing, and runtime monitoring. In this model, the SBOM becomes far more fluid.

The report closes on a pragmatic note. Asset owners should scale programs in line with software growth, not CVE counts. Software producers should expect more vulnerabilities per release and invest in automation.

Overall, the message is one of measured adaptation. The volume increase is real, but it does not equal chaos. In the AI epoch, success depends on identifying which vulnerabilities matter — and acting on them quickly.

For security-minded folks, it’s a very interesting read worth your time. The full analysis and methodology are also available on GitHub. The views expressed by the authors of this blog are their own and do not necessarily reflect the views of APNIC. Please note a Code of Conduct applies to this blog.

── more in #ai-safety 4 stories · sorted by recency
── more on @first 3 stories trending now
sponsored brought to you by zahid.host 4,200+ EU-deployed projects
reading about agents? ship yours in a single git push.

Run your AI side-project on zahid.host

EU-based hosting, git-push deploys, automatic HTTPS, no cold starts. Free tier with a custom domain — perfect for shipping the agent you just read about.

$git push zahid main
Live at https://your-agent.zahid.host
Get free account → Pricing
from €0/mo · no card required
LIVE [news/rising-cves-in-the-a…] indexed:0 read:3min 2026-07-01 ·