From blog.sensecy.com
In an ideal world, organizations would patch every new vulnerability once itβs discovered. In real-life, this is impossible. Security analysts responsible for vulnerability management activities face multiple challenges that result in what the industry calls βThe Patching Paradoxβ β common sense tells you to keep every system up to date in order to be protected, but this is not possible due to limited resources, existence of legacy systems and slow implementation of patches.