S&P 500
7,226.20
+0.01%
Dow Jones
49,494.60
-0.62%
Nasdaq 100
27,685.40
+0.66%
Russell 2000
2,804.78
-0.02%
FTSE 100
10,364.50
0.00%
Nikkei 225
59,260.50
-0.78%

Technology

25% of Known Computer Security Vulnerabilities Have No Fix

Photo of Paul Ausick
By Paul Ausick Updated Published
Follow 24/7 Wall St. on Google
This post may contain links from our sponsors and affiliates, and Flywheel Publishing may receive compensation for actions taken through them.
25% of Known Computer Security Vulnerabilities Have No Fix

© scyther5 / iStock

In the first half of 2018, analysts at computer security firm Risk Based Security (RBS) published 10,644 flaws in a computer system (known as vulnerabilities) that could be exploited by a hacker to take unauthorized actions within the system. Of the total number of vulnerabilities, there is no known solution for 25.6%.

Half the reported vulnerabilities can be exploited remotely and nearly a third (32.1%) have publicly available hacks (technically known as exploits). Web-related vulnerabilities accounted for just over 46% of the total for the first half of the year.

Brian Martin, vice-president of vulnerability intelligence for Risk Based Security, said:

The task of protecting digital assets has never been so critical to businesses as we continue to see a rise in compromised organizations and data breaches. Your vulnerability intelligence solution is a cornerstone of your defense strategy.

[nativounit]

The RBS report indicates that 16.6% of the reported vulnerabilities received high or critical scores on a scale known as the common vulnerability scoring system (CVSS). The number of these types of flaws was down slightly year over year, however, the severity levels remain significant and require organizations to remain vigilant.

In the first quarter of 2018, the month of February posted both the most new vulnerabilities with the number of low-severity CVSS scores in the first half of the year and the highest number of critical vulnerabilities. RBS attributes the spike to more than 280 critical vulnerabilities patched in Samsung mobile devices.

About two-thirds of the vulnerabilities exposed in the first half of this year were due to insufficient or improper input validation, including, among other things, problematic cross-site scripting and shell command injection.

RBS notes that flaws of this kind demonstrate the difficulties software vendors face in validating untrusted input from users. The moral of the story is that companies can’t be too careful.

[recirclink id=485508]

[wallst_email_signup]

Photo of Paul Ausick
About the Author Paul Ausick →

Paul Ausick has been writing for a673b.bigscoots-temp.com for more than a decade. He has written extensively on investing in the energy, defense, and technology sectors. In a previous life, he wrote technical documentation and managed a marketing communications group in Silicon Valley.

He has a bachelor's degree in English from the University of Chicago and now lives in Montana, where he fishes for trout in the summer and stays inside during the winter.

Latest Podcast Episode

Breaking Down A Historic Run, A New Portfolio Buy, And A Recent Recommendation Already Up 217%

Play

48 min
Apple Podcasts Spotify

Our $500K AI Portfolio

See us invest in our favorite AI stock ideas for free

Our Investment Portfolio
Live: Will Apple Blowout Q2 Earnings

Live

Thomas Richmond |

Live: Will Apple Blowout Q2 Earnings
Meta Platforms (META) Q1 2026 Earnings Preview: What Wall Street Is Watching Tonight

Live

Eric Bleeker |

Meta Platforms (META) Q1 2026 Earnings Preview: What Wall Street Is Watching Tonight

Continue Reading

A Third of Known Computer Security Flaws Have No Solution 
Paul Ausick |

A Third of Known Computer Security Flaws Have No Solution 

More than 11,000 system vulnerabilities discovered in the first half of 2019 leave personal and business data open to attack.…
Cybersecurity Software More Critical Than Ever: 4 Top Stocks to Buy
Lee Jackson |

Cybersecurity Software More Critical Than Ever: 4 Top Stocks to Buy

While the whirlwinds around the top cybersecurity stocks have really slowed from the 2013 to 2015 pace, the need is…
Goldman Sachs Very Positive on Cybersecurity and Analytics: 4 Stocks to Buy Now
Lee Jackson |

Goldman Sachs Very Positive on Cybersecurity and Analytics: 4 Stocks to Buy Now

Goldman Sachs remains very positive on the top cybersecurity and analytics stocks, and with good reason. These four stocks are…
Douglas A. McIntyre |

Internet Explorer Has Huge Security Flaw

Microsoft has released a warning about vulnerabilities in its Internet Explorer that create security flaws that it deems as a…
Will Pacemakers and Other Medical Implants Be Hacked?
Paul Ausick |

Will Pacemakers and Other Medical Implants Be Hacked?

The U.S. FDA has proposed new guidelines to address cybersecurity threats to implanted medical devices. Comments on the guidelines are…
Top Software Analyst Has 4 Red-Hot Stocks to Buy With 30% or More Growth Potential
Lee Jackson |

Top Software Analyst Has 4 Red-Hot Stocks to Buy With 30% or More Growth Potential

SunTrust Robinson Humphrey's lead software analyst sees a new software adoption cycle spurred on by the new era of innovative…
Security Software Back in Focus After Huge Equifax Hack Exposes Millions
Lee Jackson |

Security Software Back in Focus After Huge Equifax Hack Exposes Millions

While the whirlwind around the top cybersecurity stocks has really slowed from the 2013 too 2015 pace, the need is…
Goldman Sachs Sees Cybersecurity Demand Exploding: 5 Red-Hot Stocks to Buy Now
Lee Jackson |

Goldman Sachs Sees Cybersecurity Demand Exploding: 5 Red-Hot Stocks to Buy Now

The need for cybersecurity in corporate America and government is increasing every year. Goldman Sachs says now is the time…
Hacker Steals $300K from OlympusDAO Despite $3.3M Bug Bounty
247patrick |

Hacker Steals $300K from OlympusDAO Despite $3.3M Bug Bounty

DeFi reserve currency protocol OlympusDAO reportedly lost roughly $300,000 after a hacker attacked its smart contract on Ethereum.

Top Gaining Stocks

Cboe Global Markets
CBOE Vol: 1,568,143
New Pluto Global
PSKY Vol: 12,285,993
Seagate Technology
STX Vol: 7,378,346
Oracle
ORCL Vol: 26,317,675
Datadog
DDOG Vol: 6,247,779

Top Losing Stocks

LKQ
LKQ Vol: 4,367,433
Clorox
CLX Vol: 13,260,523
Stryker
SYK Vol: 4,519,455
Mohawk Industries
MHK Vol: 1,859,865
Amgen
AMGN Vol: 3,818,618