Zero Day Initiative awarded more than $1.5 million in cash and prizes to bug-hunters throughout 2019. Most of those advisories (88 percent) were published in conjunction with a patch from the vendor. Microsoft topped the list of advisories-by vendor, accounting for 190 disclosures. Out-of-bounds (OOB) and use-after-free (UAF) bugs were the most common types of vulnerabilities found in 2019, according to ZDI. ZDI has published 154 advisories for 2020, affecting Apple, Cisco, Oracle, Microsoft and others.
Source: https://threatpost.com/zero-day-initiative-bug-hunters-15m-2019/152435/