Vulnerability prioritisation is essential in the process of the vulnerability management within an IT network environment. Accurate prioritisation of the detected vulnerabilities is an important factor in corporate cybersecurity. This is because the most critical vulnerabilities should be given an immediate attention. The process of vulnerability prioritization is further exacerbated by amounts of data produced by various security systems. Thus timely detection and elimination of a vulnerability critical to the company, is very difficult. In order to improve the efficiency of the vulnerability prioritisation process, in this paper a study of selected metrics that aim to facilitate detection of critical vulnerabilities is performed.