IBM X-Force Reds vulnerability scanning data shows about 1.7 million vulnerabilities are reported by scanners. 16 percent of those vulnerabilities have associated public exploits. An attacker could exploit up to 272,000 vulnerabilities at any moment in time. IBM Security’s team of Attacker hackers, IBM Security, believes ranking is the most important part of a vulnerability management program. The ranking engine must be inputted into a ranking engine that helps teams patching the most impactful issues first. The two should live in symbiosis for reducing risk and reducing actionable risk.”]
Source: https://securityintelligence.com/posts/to-rank-or-not-to-rank-should-never-be-a-question/

