Sign In

Communications of the ACM

ACM TechNews

German ­niversity Reports Severe Software Vulnerabilities ­p in 2015

View as: Print Mobile App Share:
A warning of vulnerability.

Hasso Plattner Institute researchers say there were fewer software vulnerabilities reported globally last year than the year before, but more published vulnerabilities with a high level of severity.


Although fewer software security vulnerabilities were reported worldwide last year than in 2014, the number of published vulnerabilities with a high level of severity has increased, according to Hasso Plattner Institute (HPI) researchers.

The researchers identified about 5,700 vulnerabilities throughout the year in HPI-VDB, a database for vulnerability analysis, compared to about 7,200 in 2014. However, 2015 saw about 2,000 weaknesses identified as "high severity," compared to about 1,800 weaknesses identified as "high severity" the year before.

The project, which is maintained by the IT Security Engineering Team at HPI, found 7,000 new software products and 400 new development companies appeared in the database. The entire database stores more than 73,100 pieces of information on vulnerabilities, affecting 180,000 programs from 15,500 different software makers.

The HPI-VDB data comes from multiple sources, primarily other publicly available websites with security information about vulnerabilities and security bulletins from vendors.

From THE Journal
View Full Article


Abstracts Copyright © 2016 Information Inc., Bethesda, Maryland, USA


No entries found

Sign In for Full Access
» Forgot Password? » Create an ACM Web Account