AI Agents Help Cato Slash ‘Time-to-Protect’ From New CVEs

The pace of vulnerability disclosure has exploded in recent years, with NIST noting a 250% increase in CVE submissions since the early 2020s and a 33% year‑on‑year rise in early 2026. This flood of flaws strains traditional security models that rely on manual patch cycles, often leaving organizations exposed for weeks. Moreover, Verizon data shows just over 50% of edge‑device vulnerabilities were fully mitigated in 2025, underscoring a widening gap between threat emergence and remediation.

Cato Networks tackles this gap by embedding artificial‑intelligence agents into its SASE platform. These agents continuously ingest CVE data, extract indicators of compromise, reproduce exploits in sandboxed environments, and generate threat signatures that are rigorously tested for false positives. Once validated, the signatures are automatically pushed across Cato’s global cloud infrastructure, eliminating the need for customer‑side configuration. The result is a near‑real‑time protection loop that compresses a multi‑week mitigation process into a 45‑minute cycle, effectively operating at machine speed rather than human speed.

The implications extend beyond Cato’s customer base. As AI‑driven mitigation proves viable, the security industry may shift toward fully automated, cloud‑native defenses, reducing reliance on legacy appliances and manual workflows. Enterprises that adopt such capabilities can expect shorter exposure windows, lower operational overhead, and a stronger posture against rapidly evolving threats. In a landscape where exploit timelines are measured in minutes, the ability to respond at comparable speed could become a decisive competitive advantage.