Memory-safety flaws represent the majority of high-severity problems for Google and Microsoft, but they’re not necessarily associated with the majority of vulnerabilities that actually get exploited.
So while coding with Rust can help reduce memory safety vulnerabilities, it won’t fix everything.
Security biz Horizon3.ai has analyzed CISA’s Known Exploited Vulnerabilities in 2023 and found, as chief attack engineer Zach Hanley put it, that “Rust won’t save us, but it will help us.”