Hosted by GrammaTech
Presented on: September 15, 2021
Research highlights hidden vulnerabilities in commonly used commercial off-the-shelf software applications
Commercial off-the-shelf (COTS) software includes prevalent use of third-party and open-source components creating a software supply chain security blind spot. The findings in a recent Osterman Research report present a serious weakness in the software supply chain of many widely used COTS software applications. This webinar will share results of the research report and discuss how organizations can take a more proactive approach to ensuring a stronger enterprise-wide cybersecurity posture.
In this webinar, you will learn:
- Why vulnerabilities in COTS software applications are a cybersecurity threat
- 100% of all analyzed applications with open-source components in five common software categories (web browsers, email, file sharing, online meetings and messaging) contained vulnerable open-source components
- Applications in the meeting and email client categories were the most vulnerable
- Critical vulnerabilities (CVSS 10.0) were found in 85% of these applications
- New ways of analyzing COTS software applications to better reduce your attack surface and potential for compromise