Dangerous flaws in open source components and dependencies lurk within most applications today.

It's been four years since OWASP first put third-party vulnerability risks squarely on the appsec map when it included the problem in its Top 10 list. But in that time, the risk has only grown as increasingly more applications today depend heavily on open-source libraries, frameworks, and other components, all with their own vulnerabilities.

It's a very large attack surface for applications today and one which has increased chances of security headaches. Here are some of the latest stats on this hidden problem.

About the Author(s)

Ericka Chickowski, Contributing Writer

Ericka Chickowski specializes in coverage of information technology and business innovation. She has focused on information security for the better part of a decade and regularly writes about the security industry as a contributor to Dark Reading.

Keep up with the latest cybersecurity threats, newly discovered vulnerabilities, data breach information, and emerging trends. Delivered daily or weekly right to your email inbox.

You May Also Like


More Insights