There were 28 critical bulletins in 2014, down from 42 in 2013, according to Tripwire, Inc. The average number of common vulnerability exposures stayed the same. The single largest category last year was “remote code execution,” with “elevation of privilege” being the next largest group. But the discovered vulnerabilities continue to be high impact, said Mike Lloyd, CTO at Sunnyvale, Calif.-based RedSeal, Inc. Some of the increase in vulnerabilities could also be due to the fact that existing vulnerabilities are being fixed.”]