Vulnerability (computing)

From Wiki @ Karl Jones dot com
Revision as of 12:11, 18 February 2016 by Karl Jones (Talk | contribs) (Created page with "In computer security, a '''vulnerability''' is a weakness which allows an attacker to reduce a system's information assurance. == Description == Vulnerability is the...")

(diff) ← Older revision | Latest revision (diff) | Newer revision → (diff)
Jump to: navigation, search

In computer security, a vulnerability is a weakness which allows an attacker to reduce a system's information assurance.

Description

Vulnerability is the intersection of three elements:

  • A system susceptibility or flaw
  • Attacker access to the flaw
  • And attacker capability to exploit the flaw

Attack surface

To exploit a vulnerability, an attacker must have at least one applicable tool or technique that can connect to a system weakness.

In this frame, vulnerability is also known as the attack surface.

See also

External links