AI helps criminals exploit CVE vulnerabilities 5 minutes after publication

By Matthew Griffin Security and Privacy 8th August 2025

WHY THIS MATTERS IN BRIEF

IT managers used to have hours or days to patch firmware but now if its not done in 5 minutes their companies are vulnerable.

Love the Exponential Future? Join our XPotential Community, future proof yourself with courses from XPotential University, read about exponential tech and trends, connect, watch a keynote, or browse my blog.

An Artificial Intelligence (AI) powered offensive research system has created more than a dozen exploits for vulnerabilities, bringing down the time to develop to less than 15 minutes in many cases, highlighting the impact that full automation could have on enterprise defenders.

"Unblinking Eye" pre-crime tech gets investment boost from UK government

The system, created by a pair of Israeli cybersecurity researchers, uses prompts to a Large Language Model (LLM), Common Vulnerabilities and Exposure (CVE) advisories, and patches pushed to open source repositories to generate proof-of-concept exploit code. The analysis pipeline uses Anthropic’s Claude-Sonnet-4.0 model to analyze the advisories and code patches, create a vulnerable test application and exploit code, and then validates the results against vulnerable and patched versions of the target application.

The system, which took only a few weeks to build, created exploits for 14 different vulnerabilities in open source software packages — some in as little as 15 minutes. While the approach requires hands-on tweaking, it shows that LLMs can help would-be cyberattackers develop exploits quickly, says Nahman Khayet, one of two independent cybersecurity researchers working on the project.

Defenders will have to change their mindset to keep up with vulnerabilities that are easy to turnaround into exploits, he says.

World first as scientists use two new DNA letters to create new "alien" life form

“Attackers may be doing this right now — or will do it in the near future — and the industry isn’t ready for it, because nobody is prepared for exploits [generated] at machine speed,” Khayet says. “Nobody believed that it’s possible that some vulnerabilities can be exploited in as little as five minutes.”

The Future of Cyber Security 2030, by Cyber Keynote Matthew Griffin

The project, which the researchers dubbed Auto Exploit, is not the first to use LLMs for automated vulnerability research and exploit development. NVIDIA, for example, created Agent Morpheus, a generative AI application that scans for vulnerabilities and create tickets for software developers to fix the issues. Google uses an LLM dubbed Big Sleep to find software flaws in open source projects and suggest fixes.

Other LLM-augmented tools give offensive researchers and cyberattackers the ability to bypass security software by creating code designed to evade security checks and antivirus scanners.

New patent shows Microsoft wants to resurrect you as a chatbot

The Auto Exploit program shows that the ongoing development of LLM-powered software analysis and exploit generation will lead to the regular creation of proof-of-concept code in hours, not months, weeks, or even days. The median time-to-exploitation of a vulnerability in 2024 was 192 days, according to data from VulnCheck.

In the latest project, the researchers used Anthropic’s Claude to generate code, but also played around with other major LLMs, including the recently released open source version of ChatGPT. The approach does not take long to start delivering dividends, says Khayet.

“We did it on our free time — no company, no money, no anything,” he says. “We paid a few hundred dollars for all the experiments, and at the end, it generates an exploit for about $1. So just think about the magnitude of that: Even a financial motivated hacker can extend this method to hundreds of vulnerabilities and maybe thousands of vulnerabilities, and I’m not even talking about nation-state actors and others.”

DARPA announces "Counter-Hypersonics" program to counter the catastrophic threat from hypersonic weapons

The low cost of generating exploits means that more far vulnerabilities could result in N-day exploits — industry parlance for exploits released in the days after a vulnerability is disclosed and patched. As a result, the degree to which vulnerable software is exposed to the Internet will likely be far higher predictor of potential cyberattacks than the difficulty of exploiting a specific vulnerability, the researchers say.

LLM guardrails have done very little to prevent the exploitation research, because the so much of cybersecurity depends on intent. In an Aug. 27 analysis, Anthropic revealed that its Claude Code service had already been used to automate a digital-extortion campaign.

Claude is not alone. Cybersecurity researchers and attackers have repeatedly bypassed guardrails put up to restrict the creation of malicious code or exploits in OpenAI’s ChatGPT and Google Gemini as well.

The Pentagon announces more investment and a new anti-satellite warfare strategy

In the Auto Exploit research, bypassing guardrails initially took some time, but became increasingly easy, says Efi Weiss, the second half of the security duo.

“The first time we did encounter guardrails, it did tell us, ‘I don’t want to do that. It sounds malicious,'” he says. “But once you play around with it a bit … and tell it, ‘Now, just analyze it. Now, just try to build a working example,’ then, it doesn’t refuse, and you can start to go around those guardrails. We managed to pass them very quickly.”

Overall, the fast pace of research and quick adoption of AI tools by threat actors means that defenders do not have much time, says Khayet. In 2024, nearly 40,000 vulnerabilities were reported, but only 768 — or less than 0.2% — were exploited. If AI-augmented exploitation becomes a reality, and vulnerabilities are not only exploited faster but more widely, defenders will truly be in trouble.

“We believe that exploits at machine speed demand defense at machine speed,” he says. “You have to be able to create some sort of a defense as early as 10 minutes after the CVE is released, and you have to expedite, as much as you can, the fixing of the actual library or the application.”

Apples new Passkey feature aims to make you unhackable

Unfortunately, after talking with security practitioners who typically have hundreds to thousands of open vulnerability findings in their systems, the researchers say that the industry is not ready for the shift to fast exploitation.

In addition, the ease of exploitability may become less of a factor for attackers, meaning that enterprise defenders should instead focus on what software can be accessed by attackers and not the exploitability of the vulnerability, an approach known as reachability analysis, says Khayet.

“You can deprioritize those that are not exposed, or that are less exposed,” he says. “But I do think that the whole idea of prioritization based on some calculation of exploitability is something that will not work anymore.”

Matthew Griffin / About Author

Described by NASA as a "Walking Encyclopaedia of the Future" and one of the world’s most in demand keynote speakers Matthew Griffin, Founder and Futurist in Chief of the 311 Institute, a global Futures and Deep Futures advisory firm, is a multi-award winning Futurist and strategic foresight expert, author, lecturer, mentor, podcast and YouTube host.

With a distinguished career running global business units at Atos, EMC, and IBM today Matthew helps leaders and titans of industry from all over the world explore the impact of the inter sections of technology, culture, and leadership, then helps them create high performance organisations that can continuously disrupt, outpace, and outthink their competition.

15 times author of the hit series the Codex of the Future series Matthew's ability to identify, track, and explain the impacts of hundreds of emerging technologies and trends on global business, culture, and society has earned him a powerful reputation and a roster of clients that include royal households, world leaders across the G7, G20, and G77, and many of the world's most recognised and exceptional organisations including ABB, Accenture, ABN Amro, Adidas, AON, ARM, BCG, Centrica, Citi Group, Coca Cola, Deloitte, Dentons, Disney, Dow, EY, Google, KPMG, Lego, Microsoft, Legal & General, LinkedIn, Nokia, Paramount, PepsiCo, PWC, Qualcomm, RWE, Samsung, T-Mobile, UBS, Visa, WIRED, WPP and hundreds of others.

Matthew is regularly featured in the global media including the AP, BBC, Bloomberg, CNBC, Discovery, Forbes, Khaleej Times, Telegraph, TIME, ViacomCBS, WIRED, and the WSJ, and his mission is to help organisations create a fair and sustainable future whose benefits are shared by everyone irrespective of their ability, background, or circumstances.