Vulnerability trends and what they tell us about security