GenAI vulnerabilities fixed only 21% of the time after pentesting

Serious vulnerabilities in generative AI (GenAI) systems discovered during penetration testing are only resolved about 21% of the time, according to Cobalt’s State of Pentesting Report 2025 published Monday.

GenAI flaws are fixed much less often than other types of flaws, such as API flaws, which are resolved more than 75% of the time, and cloud vulnerabilities, which are fixed in 68% of cases.

Read more at SC Media