Epidemiology of Software Vulnerabilities - A Study of Attack Surface Spread

Explore the impact of third-party libraries on software vulnerabilities in this 28-minute Black Hat conference talk. Dive deep into the challenges posed by the widespread use of established libraries in modern software development. Examine how a single vulnerability can spread across multiple products, exposing enterprises and necessitating repeated patching efforts. Investigate which libraries are the most significant contributors to this issue and learn about potential solutions. Gain insights into vulnerability data, tracing the origins and propagation of vulnerabilities through various products. Discover actionable steps that the security research community and enterprise customers can take to mitigate these risks and improve overall software security.