The most popular and most used operating system is also the most vulnerable software in 2016. The details are listed according to CVE (Common Vulnerabilities and Exposures) on their website. The list contains a list of top 50 software’s which include Operating system and Applications.
Don’t consider the list as a negative publicity to the software and its manufacturers. Basically, what it says is this much of vulnerabilities were discovered on these software’s and the manufacturers were able to find and fix it making it more secure.
The entire list is shown at the end of this article.
Most vulnerable Operating systems in 2016
According to CVE, the most vulnerable software is Android. Android was found to carry 523 vulnerabilities. This does not mean your Android carry all these 523 problems. Most of these vulnerabilities are specific to certain drivers, chipset, version of Android and bugs from installed Apps. So, the number of vulnerabilities in one device may not be the same on another one.
To fix these vulnerabilities, Google regularly release Android security patches in the form of updates to fix these loopholes. When reported, hardware manufacturers also release hardware updates to patch the vulnerabilities. Another problem is the security threats from the installed Apps.
Solution: Keep your device up to date. If you notice no updates in last several days, regularly check for updates manually and get it installed.
Other Operating Systems: Android is followed by Debian Linux from Debian, Ubuntu Linux from Canonical, Leap and Opensuse from Novell standing at 2nd, 3rd, 5th and 6th position respectively. Mac OS X and Linux kernel were found to have more vulnerability than Windows 10.
Most vulnerable Applications in 2016
Flash Player carried 266 vulnerabilities which is the highest among Application software. Flash Player is slowly and surely getting wiped out from systems. The frequent news about discovering a new Flash vulnerability and the popularity of HTML 5 is making developers to move away from using Flash Player for displaying animations and videos. Popular web browsers are also moving away from Flash and looking for alternate methods.
If you use Flash Player, regularly check for updates and keep it updated.
Other Applications: Adobe Acrobat Reader DC, Acrobat DC and Acrobat from Adobe came in 7th, 8th, 9th and 12th places with 227, 227, 224 and 204 vulnerabilities respectively. These vulnerabilities were widely publicized in 2016 as some of them even allowed a hacker to take remote control on your PC.
Most vulnerable Web browsers in 2016
Google Chrome is the most vulnerable among web browsers in 14th position with 172 loopholes. This is followed by Edge in 19th position, Firefox in 22nd position and internet explorer in 23rd position.
Solution: Fortunately, web browsers are quickly fixed by releasing patches immediately when a vulnerability is reported.
Most vulnerable of programming language and software in 2016
PHP was found to be the most vulnerable among programming language. Any websites using PHP scripts are more prone to attack. Mysql, Wireshark, Phpmyadmin are other languages that were found to carry loopholes.
Solution: Developers need to be aware of newly found bugs and regularly check for bugs in their software. If bugs are found, find a fix and release these as patches through updates.
|Sl No.||Product||Vendor||Type of Software||Number of Vulnerabilities|
|7||Acrobat Reader Dc||Adobe||Application||227
|16||Windows Server 2012||Microsoft||OS||156|
|18||Windows Rt 8.1||Microsoft||OS||139|
|21||Windows Server 2008||Microsoft||OS||133|
|24||Enterprise Linux Workstation||Redhat||OS||126|
|25||Enterprise Linux Server||Redhat||OS||126|
|27||Enterprise Linux Desktop||Redhat||OS||125|
|40||Flash Player For Linux||Adobe||Application||62|
|45||Air Sdk \& Compiler||Adobe||Application||55|
|46||Enterprise Linux Hpc Node||Redhat||OS||54|
|47||Enterprise Linux Server Eus||Redhat||OS||53|
|48||Enterprise Linux Hpc Node Eus||Redhat||OS||49|
|50||Suse Linux Enterprise Server||Novell||OS||48|
Credits : CVE details