Vulnerability
What is Vulnerability?
VulnerabilityA weakness in a system, application, or process that an attacker can exploit to violate confidentiality, integrity, or availability.
A vulnerability is any flaw or weakness — in code, configuration, design, or operational practice — that, if exploited, could compromise the security of an information system. Vulnerabilities arise from software bugs (memory errors, missing input validation), misconfiguration, weak credentials, design oversights, or unpatched dependencies. They are catalogued publicly using identifiers such as CVE and rated by frameworks like CVSS and EPSS to prioritize remediation. Managing vulnerabilities requires continuous discovery (scanning, SAST/DAST), risk-based prioritization, patching or compensating controls, and verification that the fix is effective and durable across the asset inventory.
● Examples
- 01
An unpatched library with a known CVE that allows remote code execution.
- 02
A misconfigured S3 bucket exposing customer data publicly.
● Frequently asked questions
What is Vulnerability?
A weakness in a system, application, or process that an attacker can exploit to violate confidentiality, integrity, or availability. It belongs to the Vulnerabilities category of cybersecurity.
What does Vulnerability mean?
A weakness in a system, application, or process that an attacker can exploit to violate confidentiality, integrity, or availability.
How do you defend against Vulnerability?
Defences for Vulnerability typically combine technical controls and operational practices, as detailed in the full definition above.
What are other names for Vulnerability?
Common alternative names include: Security weakness, Security flaw.