Search

See Resources

Top 10 Vulnerabilities

The Top 10 External and Top 10 Internal Vulnerabilities are dynamic lists of the most prevalent and critical security vulnerabilities in the real world. Based on the Laws of Vulnerabilities, this information is computed anonymously from over 2 billion IP audits per year. The Top 10 External Vulnerabilities are the most prevalent and critical vulnerabilities which have been identified on Internet facing systems. The Top 10 Internal Vulnerabilities show this information for systems and networks inside the firewall.

The two Top 10 lists exclude vulnerabilities that do not have patches, even if workarounds are available, because these lists are tools to help prioritize remediation.

Top 10 Internal Vulnerabilities Published February 2016

  1. Oracle Java SE Critical Patch Update - October 2015

    Qualys ID:
    124169
    Vendor Reference:
    Oracle Java SE CPU October 2015
    CVE Reference:
  2. Microsoft Windows Remote Code Execution Vulnerability (MS15-115)

    Qualys ID:
    91112
    Vendor Reference:
    MS15-115
    CVE Reference:
  3. Microsoft Schannel Spoofing Vulnerability (MS15-121)

    Qualys ID:
    91107
    Vendor Reference:
    MS15-121
    CVE Reference:
  4. Microsoft Windows Winsock Privilege Escalation Vulnerability (MS15-119)

    Qualys ID:
    91110
    Vendor Reference:
    MS15-119
    CVE Reference:
  5. Microsoft Windows Graphics Component Remote Code Execution Vulnerability (MS15-128)

    Qualys ID:
    91140
    Vendor Reference:
    MS15-128
    CVE Reference:
  6. Adobe Flash Player and AIR Security Update (APSB15-28)

    Qualys ID:
    124208
    Vendor Reference:
    APSB15-28
    CVE Reference:
  7. Microsoft Windows NDIS Privilege of Elevation Vulnerability (MS15-117)

    Qualys ID:
    91104
    Vendor Reference:
    MS15-117
    CVE Reference:
  8. Microsoft Internet Explorer Cumulative Security Update (MS15-124)

    Qualys ID:
    100269
    Vendor Reference:
    MS15-124
    CVE Reference:
  9. Microsoft Office Remote Code Execution Vulnerabilities (MS15-116)

    Qualys ID:
    110261
    Vendor Reference:
    MS15-116
    CVE Reference:
  10. Microsoft Windows Kernel-Mode Drivers Privilege Escalation Vulnerabilities (MS15-135)

    Qualys ID:
    91133
    Vendor Reference:
    MS15-135
    CVE Reference:

Top 10 External Vulnerabilities Published February 2016

  1. Cisco IOS Malformed IPV4 Packet Denial of Service Vulnerability

    Qualys ID:
    43051
    Vendor Reference:
    No Vendor Reference
    CVE Reference:
  2. OpenSSL Multiple Remote Security Vulnerabilities

    Qualys ID:
    38602
    Vendor Reference:
    OpenSSL Security Advisory [05 Jun 2014]
    CVE Reference:
  3. SSL/TLS Server Factoring RSA Export Keys (FREAK) vulnerability

    Qualys ID:
    38605
    Vendor Reference:
    No Vendor Reference
    CVE Reference:
  4. SSL Server Allows Anonymous Authentication Vulnerability

    Qualys ID:
    38142
    Vendor Reference:
    No Vendor Reference
    CVE Reference:
  5. Apache HTTP Server Multiple Cross-Site Scripting Vulnerabilities

    Qualys ID:
    12260
    Vendor Reference:
    RHSA-2008:0004, RHSA-2008:0005, RHSA-2008:0006, RHSA-2008:0007, RHSA-2008:0008
    CVE Reference:
  6. OpenSSH Signal Handling Vulnerability

    Qualys ID:
    38560
    Vendor Reference:
    No Vendor Reference
    CVE Reference:
  7. OpenSSL Weak RSA Key Exchange Vulnerability

    Qualys ID:
    123407
    Vendor Reference:
    OpenSSL Security Advisory [19 March 2015]
    CVE Reference:
  8. SSH Protocol Version 1 Supported

    Qualys ID:
    38304
    Vendor Reference:
    No Vendor Reference
    CVE Reference:
  9. Microsoft Windows HTTP.sys Remote Code Execution Vulnerability (MS15-034)

    Qualys ID:
    91041
    Vendor Reference:
    MS15-034
    CVE Reference:
  10. EOL/Obsolete Software: PHP 5.3.x Detected

    Qualys ID:
    105578
    Vendor Reference:
    PHP 5.3.29
    CVE Reference:

Archive of Top 10 Vulnerabilities

Email or call us at +1 800 745 4355 or try our Global Contacts
Subscription Packages
Qualys Solutions
Qualys Community
Company
Free Trial & Tools
Popular Topics