Search

See Resources

Top 10 Vulnerabilities

The Top 10 External and Top 10 Internal Vulnerabilities are dynamic lists of the most prevalent and critical security vulnerabilities in the real world. Based on the Laws of Vulnerabilities, this information is computed anonymously from over 2 billion IP audits per year. The Top 10 External Vulnerabilities are the most prevalent and critical vulnerabilities which have been identified on Internet facing systems. The Top 10 Internal Vulnerabilities show this information for systems and networks inside the firewall.

The two Top 10 lists exclude vulnerabilities that do not have patches, even if workarounds are available, because these lists are tools to help prioritize remediation.

Top 10 Internal Vulnerabilities Published May 2012

  1. Microsoft Windows Remote Desktop Protocol Remote Code Execution Vulnerability (MS12-020)

    Qualys ID:
    90783
    Vendor Reference:
    MS12-020
    CVE Reference:
  2. Microsoft Internet Explorer Cumulative Security Update (MS12-023)

    Qualys ID:
    100113
    Vendor Reference:
    MS12-023
    CVE Reference:
  3. Microsoft Windows C Run-Time Library Remote Code Execution Vulnerability (MS12-013)

    Qualys ID:
    90773
    Vendor Reference:
    MS12-013
    CVE Reference:
  4. Microsoft .NET Framework Remote Code Execution Vulnerabilities (MS12-035)

    Qualys ID:
    90801
    Vendor Reference:
    MS12-035
    CVE Reference:
  5. Microsoft Windows Media Remote Code Execution Vulnerability (MS12-004)

    Qualys ID:
    90767
    Vendor Reference:
    MS12-004
    CVE Reference:
  6. Oracle Java SE Critical Patch Update - February 2012

    Qualys ID:
    119956
    Vendor Reference:
    Oracle JAVA CPU FEB 2012
    CVE Reference:
  7. Java for OS X 2012-003 and Java for Mac OS X 10.6 Update 8 (APPLE-SA-2012-04-12-1)

    Qualys ID:
    120216
    Vendor Reference:
    APPLE-SA-2012-04-12-1
  8. Adobe Flash Player Object Confusion Vulnerability (APSB12-09)

    Qualys ID:
    120204
    Vendor Reference:
    APSB12-09
    CVE Reference:
  9. Adobe Acrobat and Reader Multiple Vulnerabilities (APSB12-08)

    Qualys ID:
    120103
    Vendor Reference:
    APSB12-08
    CVE Reference:
  10. Microsoft Windows Common Controls Remote Code Execution Vulnerability (MS12-027)

    Qualys ID:
    90793
    Vendor Reference:
    MS12-027
    CVE Reference:

Top 10 External Vulnerabilities Published May 2012

  1. SSL Server Allows Anonymous Authentication Vulnerability

    Qualys ID:
    38142
    Vendor Reference:
    No Vendor Reference
  2. EOL/Obsolete Operating System: Microsoft Windows 2000 Detected

    Qualys ID:
    105359
    Vendor Reference:
    Windows 2000 End of Life
  3. PHP apache_request_headers Buffer Overflow and PHP-CGI Query String Parameter Vulnerabilities

    Qualys ID:
    12551
    Vendor Reference:
    PHP Change Log
    CVE Reference:
  4. SSH Protocol Version 1 Supported

    Qualys ID:
    38304
    Vendor Reference:
    No Vendor Reference
    CVE Reference:
  5. Samba Remote Code Execution Vulnerability

    Qualys ID:
    70064
    Vendor Reference:
    Samba Security Advisory
    CVE Reference:
  6. Cisco IOS Telnet Service Remote Denial of Service Vulnerability

    Qualys ID:
    38308
    Vendor Reference:
    cisco-sa-20040827-telnet
    CVE Reference:
  7. Microsoft SMB Remote Code Execution Vulnerability (MS09-001)

    Qualys ID:
    90477
    Vendor Reference:
    MS09-001
    CVE Reference:
  8. Microsoft Windows Server Service Could Allow Remote Code Execution (MS08-067) and Shadow Brokers (ECLIPSEDWING)

    Qualys ID:
    90464
    Vendor Reference:
    MS08-067
    CVE Reference:
  9. Red Hat JBoss Application Server Web Console and JMX Management Console Authentication Bypass Vulnerability

    Qualys ID:
    86882
    Vendor Reference:
    Bug 585899
    CVE Reference:
  10. Microsoft Windows Remote Desktop Protocol Remote Code Execution Vulnerability (MS12-020)

    Qualys ID:
    90783
    Vendor Reference:
    MS12-020
    CVE Reference:

Archive of Top 10 Vulnerabilities

Email or call us at +1 800 745 4355 or try our Global Contacts
Subscription Packages
Qualys Solutions
Qualys Community
Company
Free Trial & Tools
Popular Topics