Software vulnerabilities are a reality for everyone who uses technology. Every month, software companies release patches to fix vulnerabilities discovered in the devices we use every day. Windows, MacOS, Linux, iOS and Android all receive patches regularly after new vulnerabilities are discovered in their operating systems. Vulnerabilities are not only limited to operating systems, but software applications, mobile device apps, and even software components are also prone to software bugs, that could give threat actors a foothold into a system. While we all live with the dynamic state of Internet-connected software, vulnerabilities still remain a misunderstood part of our lives.
For simplicity’s sake, this paper will address three basic types of software: operating systems, applications/apps, and software components, and firmware. All of these are susceptible to vulnerabilities and will likely have patches released by their respective software vendor, provided the software is supported by that vendor.