Search

See Resources

Top 10 Vulnerabilities

The Top 10 External and Top 10 Internal Vulnerabilities are dynamic lists of the most prevalent and critical security vulnerabilities in the real world. Based on the Laws of Vulnerabilities, this information is computed anonymously from over 2 billion IP audits per year. The Top 10 External Vulnerabilities are the most prevalent and critical vulnerabilities which have been identified on Internet facing systems. The Top 10 Internal Vulnerabilities show this information for systems and networks inside the firewall.

The two Top 10 lists exclude vulnerabilities that do not have patches, even if workarounds are available, because these lists are tools to help prioritize remediation.

Top 10 Internal Vulnerabilities Published August 2012

  1. Microsoft XML Core Services Remote Code Execution Vulnerability (MS12-043 and KB2719615)

    Qualys ID:
    90814
    Vendor Reference:
    KB2719615, MS12-043
    CVE Reference:
  2. Oracle Java SE Critical Patch Update - June 2012

    Qualys ID:
    120274
    Vendor Reference:
    Oracle Java CPU June 2012
    CVE Reference:
  3. Microsoft Windows Unauthorized Digital Certificates Spoofing Vulnerability (KB2728973)

    Qualys ID:
    90819
    Vendor Reference:
    KB2728973
  4. Microsoft Windows Shell Remote Code Execution Vulnerability (MS12-048)

    Qualys ID:
    90818
    Vendor Reference:
    MS12-048
    CVE Reference:
  5. Microsoft Windows Kernel-Mode Drivers Elevation of Privilege Vulnerability (MS12-047)

    Qualys ID:
    90816
    Vendor Reference:
    MS12-047
    CVE Reference:
  6. Microsoft Data Access Components Remote Code Execution Vulnerability (MS12-045)

    Qualys ID:
    90817
    Vendor Reference:
    MS12-045
    CVE Reference:
  7. EOL/Obsolete Software: Microsoft XML Core Services 4.0 Service Pack 2 Detected

    Qualys ID:
    105458
    Vendor Reference:
    KB973685, MSXML 4.0 SP2
  8. Adobe Reader and Acrobat Remote Code Execution Vulnerabilities (APSB11-24)

    Qualys ID:
    119594
    Vendor Reference:
    APSB11-24
    CVE Reference:
  9. Adobe Flash Player and AIR Multiple Vulnerabilities (APSB12-14)

    Qualys ID:
    120272
    Vendor Reference:
    APSB12-14
    CVE Reference:
  10. Microsoft Combined Security Update for Microsoft Office, Windows, .NET Framework and Silverlight (MS12-034)

    Qualys ID:
    90803
    Vendor Reference:
    MS12-034
    CVE Reference:

Top 10 External Vulnerabilities Published August 2012

  1. SSL Server Allows Anonymous Authentication Vulnerability

    Qualys ID:
    38142
    Vendor Reference:
    No Vendor Reference
  2. Apache Chunked-Encoding Memory Corruption Vulnerability

    Qualys ID:
    86352
    Vendor Reference:
    No Vendor Reference
    CVE Reference:
  3. Microsoft ASP.NET Denial of Service Vulnerability (KB2659883 and MS11-100)

    Qualys ID:
    90764
    Vendor Reference:
    KB2659883, MS11-100
    CVE Reference:
  4. EOL/Obsolete Software: Microsoft Internet Information Services (IIS) 5.x Detected

    Qualys ID:
    105456
    Vendor Reference:
    No Vendor Reference
  5. EOL/Obsolete Operating System: Microsoft Windows 2000 Detected

    Qualys ID:
    105359
    Vendor Reference:
    Windows 2000 End of Life
  6. Microsoft SMB Remote Code Execution Vulnerability (MS09-001)

    Qualys ID:
    90477
    Vendor Reference:
    MS09-001
    CVE Reference:
  7. SSH Protocol Version 1 Supported

    Qualys ID:
    38304
    Vendor Reference:
    No Vendor Reference
    CVE Reference:
  8. Microsoft Windows Server Service Could Allow Remote Code Execution (MS08-067) and Shadow Brokers (ECLIPSEDWING)

    Qualys ID:
    90464
    Vendor Reference:
    MS08-067
    CVE Reference:
  9. Microsoft Windows Remote Desktop Protocol Remote Code Execution Vulnerability (MS12-020)

    Qualys ID:
    90783
    Vendor Reference:
    MS12-020
    CVE Reference:
  10. Unauthenticated Access to FTP Server Allowed

    Qualys ID:
    27210
    Vendor Reference:
    No Vendor Reference

Archive of Top 10 Vulnerabilities

Email or call us at +1 800 745 4355 or try our Global Contacts
Subscription Packages
Qualys Solutions
Qualys Community
Company
Free Trial & Tools
Popular Topics