Frustration with Prioritizing Vulnerabilities Amidst Thousands of Security Alerts

The author expresses frustration with the overwhelming number of alerts (3000+) generated by security scanners, making it difficult to prioritize which vulnerabilities (vulns) to address. They highlight that CVSS scores are not always helpful because a critical vulnerability that is inaccessible is less important than a medium vulnerability that is actively being exploited. The security team questions why fixes are not implemented faster, but the author finds it challenging to determine where to start.