Vulnerabilities in Information Security

Vulnerabilities are weaknesses in a system that gives threats the opportunity to compromise assets. All systems have vulnerabilities. Even though the technologies are improving but the number of vulnerabilities are increasing such as tens of millions of lines of code, many developers, human weaknesses, etc. Vulnerabilities mostly happened because of Hardware, Software, Network and Procedural vulnerabilities.

1. Hardware Vulnerability:
A hardware vulnerability is a weakness which can used to attack the system hardware through physically or remotely.
For examples:

  1. Old version of systems or devices
  2. Unprotected storage
  3. Unencrypted devices, etc.

2. Software Vulnerability:
A software error happen in development or configuration such as the execution of it can violate the security policy. For examples:

  1. Lack of input validation
  2. Unverified uploads
  3. Cross-site scripting
  4. Unencrypted data, etc.

3. Network Vulnerability:
A weakness happen in network which can be hardware or software.
For examples:

  1. Unprotected communication
  2. Malware or malicious software (e.g.:Viruses, Keyloggers, Worms, etc)
  3. Social engineering attacks
  4. Misconfigured firewalls

4. Procedural Vulnerability:
A weakness happen in an organization operational methods.
For examples:

  1. Password procedure – Password should follow the standard password policy.
  2. Training procedure – Employees must know which actions should be taken and what to do to handle the security. Employees must never be asked for user credentials online. Make the employees know social engineering and phishing threats.

Don’t stop now and take your learning to the next level. Learn all the important concepts of Data Structures and Algorithms with the help of the most trusted course: DSA Self Paced. Become industry ready at a student-friendly price.

My Personal Notes arrow_drop_up

Check out this Author's contributed articles.

If you like GeeksforGeeks and would like to contribute, you can also write an article using contribute.geeksforgeeks.org or mail your article to contribute@geeksforgeeks.org. See your article appearing on the GeeksforGeeks main page and help other Geeks.

Please Improve this article if you find anything incorrect by clicking on the "Improve Article" button below.