🗓️ Save the date: The next runZero Hour is May 20th! Register Now
runZero CAASM

A CVE quagmire: Quality versus quantity

In this session, Tod Beardsley (runZero) and Jerry Gamblin (RogoLabs) dive into the "CVE Quagmire," exploring the tension between the sheer volume of vulnerability reports and the actual quality of the data provided. As the industry faces an average of over 160 new CVEs daily, the conversation shifts from fearing an AI-generated tsunami of bugs to addressing the long-standing issue of "human slop" and inconsistent metadata that has hindered security teams for decades.

The discussion highlights the critical need for machine-readable data and standardized scoring, particularly in complex environments like the Linux kernel. Gamblin explains how projects like cve.icu are bringing transparency to the program, while the upcoming CVE Schema 6.0 promises a quality era that could finally mandate the technical details necessary for automated discovery and remediation.

Watch more sessions from runZero Day

Session TitleGuests
Watch SessionA CVE quagmire:
Quality versus quantity		Jerry Gamblin, RogoLabs
Watch SessionPredicting exploitation:
A practitioner's guide		Jay Jacobs, Empirical Security
Watch SessionSignal vs slop:
Journalists on the evolution of research-driven reporting		Bill Brenner, CYBER.SEC.Community
Dennis Fisher, Decipher
Steve Ragan, 1Password
Watch SessionOn the frontlines of investigative journalism in cybersecurity:
An insider's perspective		Joseph Menn, Author & Investigative Journalist
Watch SessionFrom risk to resilience:
Navigating OT security in a converged world		Mary Gannon, GuidePoint Security
Patrick Gillespie, GuidePoint Security
Watch SessionForce multiplied:
Community-powered vuln detection		Rishi Sharma, ProjectDiscovery
Watch SessionMute the sirens:
Prioritizing vulnerability noise		Mark Lambert, ArmorCode
Watch SessionThe network edge:
EOL and exploitation		Kimber Duke, VulnCheck
Patrick Garrity, VulnCheck
Watch SessionBug bounties in the age of AICasey Ellis, Bugcrowd
Watch SessionPerimeters and pathways:
Protecting the complete attack surface		HD Moore, runZero
Jared Atkinson, SpecterOps
Zakir Durumeric, Censys
Watch SessionThe infinite eye:
How AI threat intelligence gives defenders an asymmetric edge		HD Moore, runZero
Jonathan Cran, Mallory

Meet Our Speakers

todb

VP of Security Research, runZero

Jerry Gamblin

Principal Engineer (Cisco)

Subscribe Now

Get the latest news and expert insights delivered in your inbox.

Welcome to the club! Your subscription to our newsletter is successful.

Related Resources

Podcasts
Past, Present & Future of Offensive Security w/ HD Moore
HD explores how his deep technical roots helped him build runZero to $1M ARR as a solo operation, his past, and the future of offensive security.
Watch Now
Podcasts
The infinite eye: How AI threat intelligence gives defenders an asymmetric edge
Tod Beardsley, HD Moore, and Jonathan Cran discuss how AI-powered threat intelligence is providing defenders with a much-needed advantage.
Watch Now
Podcasts
Perimeters and pathways: Protecting the complete attack surface
Tod Beardsley, Jared Atkinson, Zakir Durumeric, and HD Moore discuss the perimeters and pathways that connect internal networks to the global...
Watch Now
Podcasts
Bug bounties in the age of AI
In this session, Tod Beardsley and Casey Ellis explore the evolving role of bug bounties in a world increasingly shaped by artificial intelligence.
Watch Now

See Results in Minutes

See & secure your total attack surface. Even the unknowns & unmanageable.

Try runZero for Free
runZero CAASM
© Copyright 2026 runZero, Inc. All Rights Reserved