A06:2021 – Vulnerable and Outdated Components

GPTKB entity

Statements (23)
Predicate Object
gptkbp:instanceOf OWASP Top 10 category
gptkbp:category application security risk
gptkbp:example using components with unpatched security flaws
using outdated libraries
using unsupported software
gptkbp:focusesOn failure to patch software
failure to update dependencies
use of components with known vulnerabilities
use of outdated software components
https://www.w3.org/2000/01/rdf-schema#label A06:2021 – Vulnerable and Outdated Components
gptkbp:mitigatedBy monitor for vulnerabilities
regularly update components
remove unused dependencies
use tools to identify vulnerable components
gptkbp:partOf OWASP Top 10:2021
gptkbp:publishedBy gptkb:OWASP
gptkbp:publishedIn 2021
gptkbp:rank 6
gptkbp:replacedBy A09:2017 – Using Components with Known Vulnerabilities
gptkbp:riskFactor compromise of application security
exploitation of known vulnerabilities
gptkbp:bfsParent gptkb:OWASP_Top_10
gptkbp:bfsLayer 6