TOP 25 SECURITY VULNERABILITIES SANS

-

 

TOP 25 SECURITY VULNERABILITIES SANS



These vulnerabilities are created through multiple surveys and individual interviews with developers, senior security analysts and researchers. See detailed description of each in their link.


1Injection flawsCWE-79: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection'): https://cwe.mitre.org/data/definitions/89.html)

2Broken authentication and session managementCWE-306: Missing Authentication for Critical Function: https://cwe.mitre.org/data/definitions/306.html

3Cross-site scripting (XSS)CWE-79: Improper Neutralization of Special Elements used in an HTML Output: https://cwe.mitre.org/data/definitions/79.html

4Insecure direct object referencesCWE-690: Broken or Missing Authorization Check for Direct Object Reference: https://cwe.mitre.org/data/definitions/863.html

5Security misconfigurationCWE-200: Information Leakage and Improper Disclosure of Sensitive Data: https://cwe.mitre.org/data/definitions/200.html

6Sensitive data exposureCWE-311: Missing Encryption of Sensitive Data: https://cwe.mitre.org/data/definitions/311.html

7Cross-site request forgery (CSRF)CWE-352: Cross-Site Request Forgery (CSRF): https://cwe.mitre.org/data/definitions/352.html)

8Using components with known vulnerabilitiesCWE-125: Outdated or Unmaintained Components: https://cwe.mitre.org/data/definitions/125.html

9Failure to restrict URL accessCWE-288: Authentication Bypass by Capture of Native Credentials: https://cwe.mitre.org/data/definitions/288.html

10Insufficient logging and monitoringCWE-285: Improper Access Control of System Files: https://cwe.mitre.org/data/definitions/285.html

11Cross-origin resource sharing (CORS) misconfigurationCWE-20: Improper Input Validation: https://cwe.mitre.org/data/definitions/20.html

12Insecure communicationsCWE-250: Execution with Insufficient Privileges: https://cwe.mitre.org/data/definitions/250.html

13XML external entity (XXE) injectionCWE-611: Improper Restriction of XML External Entity Reference: https://cwe.mitre.org/data/definitions/611.html

14Improper error handlingCWE-754: Improper Check for Unusual or Unexpected Data: https://cwe.mitre.org/data/definitions/754.html

15Insecure encryption key managementCWE-329: Not Using Cryptographically Secure Random Numbers: https://cwe.mitre.org/data/definitions/338.html

16Insufficient security controls in cloud environmentsCWE-113: Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection'): https://cwe.mitre.org/data/definitions/78.html)

17Improper input validationCWE-264: Permissions, Privileges, and Access Controls: https://cwe.mitre.org/data/definitions/264.html

18Out-of-bounds readCWE-126: Buffer Overflows: https://cwe.mitre.org/data/definitions/126.html

19Out-of-bounds writeCWE-126: Buffer Overflows: https://cwe.mitre.org/data/definitions/126.html

20Use after freeCWE-416: Use of Pointer after it has been Freed: https://cwe.mitre.org/data/definitions/416.html

21Improper limitation of a path name to a restricted directory ('Path Traversal')[CWE-22: Path Traversal: '...'])

Comments

Post a Comment

Popular posts from this blog

OWASP Top 10 Vulnerabilities

-
Image
The OWASP Top 10 is a list of the most common and critical web application security risks. It is published by the Open Web Application Security Project (OWASP), a non-profit organization dedicated to improving the security of software. The OWASP Top 10 is a valuable resource for developers, security professionals, and organizations of all sizes. By understanding and addressing the risks in the Top 10, organizations can significantly improve the security of their web applications. The following is a brief explanation of the OWASP Top 10 vulnerabilities: A1: Broken Access Control Broken access control vulnerabilities allow attackers to access resources that they should not be able to access. This can include sensitive data, such as customer information or financial data. A2: Cryptographic Failures Cryptographic failures vulnerabilities allow attackers to intercept and decrypt sensitive data, or to forge digital signatures. This can lead to identity theft, fraud, and other seriou...
Read more

CSI Linux: A Powerful Linux Distribution for Digital Forensics, Malware Analysis, creating of report and OSINT

-
Image
  CSI Linux is a Linux distribution that is specifically designed for digital forensics and open-source intelligence (OSINT) investigations. It is a free and open-source project that is maintained by a team of experienced cyber investigators. CSI Linux comes pre-installed with a wide range of tools and resources that are essential for digital forensics and OSINT investigations. These tools include: File carving and recovery tools Network analysis tools Memory analysis tools Steganalysis tools Malware analysis tools OSINT tools CSI Linux also includes a number of features that make it well-suited for digital forensics investigations, such as: A write-blocked mode that prevents accidental changes to evidence A case management system that helps to organize and track evidence A reporting tool that can generate reports in a variety of formats CSI Linux is a valuable tool for anyone who works in the field of digital forensics or OSINT investigations. It is easy to use and provides a comp...
Read more

CSI Linux: A New Linux Distribution For Cyber and OSINT Investigation

-
Image
  Introduction To combat the growing problem of cybercrime, governments and businesses are investing more resources in creating cyber investigation labs to investigate crimes committed online. Software tools therefore are crucial to the investigation process. As a result, Cyber Forensics, Incident Response, and Competitive Intelligence professionals developed CSI Linux, an operating system targeted at cyber forensics. It is time-consuming to collect and install a variety of applications in order to inspect and analyze crime. Therefore, an all-inclusive system that ships with only the tools necessary is needed. CSI Linux: A Linux Based Operating System This multipurpose operating system was designed specifically for cyber investigators. With CSI Linux, you don’t have to worry about installing and configuring software packages because tons of tools are pre-installed to conduct an online investigation, analyze malware, and prevent security threats. CSI Linux addresses the following: O...
Read more