Search

See Resources

Top 10 Vulnerabilities

The Top 10 External and Top 10 Internal Vulnerabilities are dynamic lists of the most prevalent and critical security vulnerabilities in the real world. Based on the Laws of Vulnerabilities, this information is computed anonymously from over 2 billion IP audits per year. The Top 10 External Vulnerabilities are the most prevalent and critical vulnerabilities which have been identified on Internet facing systems. The Top 10 Internal Vulnerabilities show this information for systems and networks inside the firewall.

The two Top 10 lists exclude vulnerabilities that do not have patches, even if workarounds are available, because these lists are tools to help prioritize remediation.

Top 10 Internal Vulnerabilities Published August 2011

  1. Oracle Java SE Critical Patch Update - June 2011

    Qualys ID:
    119319
    Vendor Reference:
    Oracle JAVA CPU JUN2011
    CVE Reference:
  2. Adobe Reader and Acrobat Security Update (APSB11-03)

    Qualys ID:
    118956
    Vendor Reference:
    APSB11-03
    CVE Reference:
  3. Adobe Flash Player and AIR Unspecified Code Execution Multiple Vulnerabilities (APSA10-01 and APSB10-14)

    Qualys ID:
    118088
    Vendor Reference:
    APSA10-01, APSB10-14
    CVE Reference:
  4. Writeable SNMP Information

    Qualys ID:
    78031
    Vendor Reference:
    No Vendor Reference
    CVE Reference:
  5. Microsoft JScript and VBScript Scripting Engines Remote Code Execution Vulnerability (MS11-031)

    Qualys ID:
    90700
    Vendor Reference:
    MS11-031
    CVE Reference:
  6. Microsoft .NET Common Language Runtime and Silverlight Remote Code Execution Vulnerabilities (MS10-060)

    Qualys ID:
    90624
    Vendor Reference:
    MS10-060
    CVE Reference:
  7. Microsoft Windows Kernel-Mode Drivers Privilege Elevation Vulnerability (MS10-048)

    Qualys ID:
    90627
    Vendor Reference:
    MS10-048
    CVE Reference:
  8. Microsoft Windows SMB Server Remote Code Execution Vulnerability (MS10-054)

    Qualys ID:
    90626
    Vendor Reference:
    MS10-054
    CVE Reference:
  9. Microsoft PowerPoint Remote Code Execution Vulnerability (MS11-036)

    Qualys ID:
    110149
    Vendor Reference:
    MS11-036
    CVE Reference:
  10. Microsoft SMB Server Remote Code Execution Vulnerability (MS11-020)

    Qualys ID:
    90699
    Vendor Reference:
    MS11-020
    CVE Reference:

Top 10 External Vulnerabilities Published August 2011

  1. SSL Server Allows Anonymous Authentication Vulnerability

    Qualys ID:
    38142
    Vendor Reference:
    No Vendor Reference
  2. Apache HTTP Server Multiple Cross-Site Scripting Vulnerabilities

    Qualys ID:
    12260
    Vendor Reference:
    RHSA-2008:0004, RHSA-2008:0005, RHSA-2008:0006, RHSA-2008:0007, RHSA-2008:0008
    CVE Reference:
  3. EOL/Obsolete Operating System: Microsoft Windows 2000 Detected

    Qualys ID:
    105359
    Vendor Reference:
    Windows 2000 End of Life
  4. OpenSSH Signal Handling Vulnerability

    Qualys ID:
    38560
    Vendor Reference:
    No Vendor Reference
    CVE Reference:
  5. Internet Information Services (IIS) Could Allow Elevation of Privilege (MS09-020)

    Qualys ID:
    86837
    Vendor Reference:
    MS09-020
    CVE Reference:
  6. PHP "spl_object_storage_attach" Use-After-Free Vulnerability

    Qualys ID:
    12378
    Vendor Reference:
    PHP 5.2.14, PHP 5.3.3
    CVE Reference:
  7. Cisco IOS Telnet Service Remote Denial of Service Vulnerability

    Qualys ID:
    38308
    Vendor Reference:
    cisco-sa-20040827-telnet
    CVE Reference:
  8. SSH Protocol Version 1 Supported

    Qualys ID:
    38304
    Vendor Reference:
    No Vendor Reference
    CVE Reference:
  9. Microsoft SMB Remote Code Execution Vulnerability (MS09-001)

    Qualys ID:
    90477
    Vendor Reference:
    MS09-001
    CVE Reference:
  10. Microsoft Windows Server Service Could Allow Remote Code Execution (MS08-067) and Shadow Brokers (ECLIPSEDWING)

    Qualys ID:
    90464
    Vendor Reference:
    MS08-067
    CVE Reference:

Archive of Top 10 Vulnerabilities

Email or call us at +1 800 745 4355 or try our Global Contacts
Subscription Packages
Qualys Solutions
Qualys Community
Company
Free Trial & Tools
Popular Topics