Top 25 Most Dangerous Vulnerabilities Refreshed After 8 Years
The entries were selected based on objective criteria compared to the previous list, considering reports from security researchers along with prevalence, severity, and exploitation in the real-world. A new vulnerability is now at the top of the list, a position previously held by SQL injection, which has fallen to the sixth spot. “Improper Restriction of Operations within the Bounds of a Memory Buffer” is the name of the threat with the highest calculated score, although this does not reflect its severity. The vulnerability with the highest average severity score, 9.129 out of 10, is SQL injection since it is has a high probability to be exploited and impact because it can compromise databases with sensitive data. Cross-site scripting (XSS) takes second place on the list, despite having a low severity average score of 5.778. This position is explained by the high likelihood of exploitation that could enable an attacker to run unauthorized code or commands and its prevalence in reports. 'Improper input validation' ranks third in the list, with a severity score of 7.242.
15.5.2020
Unpatched Vulnerabilities