Exploitability prediction of software vulnerabilities

Bhatt, Navneet; Anand, Adarsh; Yadavalli, Venkata S. Sarma

doi:10.1002/qre.2754

Cited by 24 publications

(16 citation statements)

References 20 publications

Supporting

Mentioning

Contrasting

Order By: Relevance

“…Specifically, these authors pre-trained a DL model, BERT [42], on massive non-SV sources (e.g., text on Book Corpus [211] and Wikipedia [60]) and then fine-tuned this pre-trained model on SV data using additional pooling and dense layers. Bhatt et al [14] also suggested that incorporating the types of SVs (e.g., SQL injection) into ML models can further enhance the predictive effectiveness. Suciu [176] empirically showed that unifying SV-related sources used in prior work (e.g., SV databases [20], social media [159], SV-related discussions [179] and PoC code in ExploitDB [84]) supports more effective and timely prediction of functional exploits [58].…”

Section: Exploit Likelihoodmentioning

confidence: 99%

“…However, the LDA topics/keywords did not agree well (< 40%) with the OWASP descriptions, probably because 10 topics did not cover all the underlying patterns of SV descriptions. Aljedaani et al [3] again used LDA to identify 10 types of SVs reported in the bug tracking system of Chromium 14 and found memory-related issues were the most prevalent topics.…”

Section: Custom Vulnerability Typesmentioning

confidence: 99%

“…18 The latter case would require techniques in the CWE sub-theme (see section 6.1). 14 https://bugs.chromium.org/p/chromium/issues/list 15 1. Buffer errors, 2.…”

Section: Vulnerability Information Retrievalmentioning

confidence: 99%

“…The metadata about SVs can also complement the missing information in descriptions or code for SV assessment and prioritization. For example, prediction of exploits and their characteristics have been enhanced using CVSS metrics [5], CPE [2] and SV types [14] on NVD. Additionally, Twitter-related statistics (e.g., number of followers, likes and retweets) have been shown to increase the performance of predicting SV exploitation, impact and severity [30,159].…”

Section: Model Featuresmentioning

confidence: 99%

See 3 more Smart Citations

A Survey on Data-driven Software Vulnerability Assessment and Prioritization

Le¹,

Chen²,

Babar³

2021

Preprint

View full text Add to dashboard Cite

Software Vulnerabilities (SVs) are increasing in complexity and scale, posing great security risks to many software systems. Given the limited resources in practice, SV assessment and prioritization help practitioners devise optimal SV mitigation plans based on various SV characteristics. The surge in SV data sources and datadriven techniques such as Machine Learning and Deep Learning have taken SV assessment and prioritization to the next level. Our survey provides a taxonomy of the past research efforts and highlights the best practices for data-driven SV assessment and prioritization. We also discuss the current limitations and propose potential solutions to address such issues. CCS Concepts: • General and reference → Surveys and overviews; • Security and privacy → Software security engineering; • Computing methodologies → Machine learning; Neural networks;

show abstract

Section: Exploit Likelihoodmentioning

confidence: 99%

Section: Custom Vulnerability Typesmentioning

confidence: 99%

“…18 The latter case would require techniques in the CWE sub-theme (see section 6.1). 14 https://bugs.chromium.org/p/chromium/issues/list 15 1. Buffer errors, 2.…”

Section: Vulnerability Information Retrievalmentioning

confidence: 99%

Section: Model Featuresmentioning

confidence: 99%

See 2 more Smart Citations

A Survey on Data-driven Software Vulnerability Assessment and Prioritization

Le¹,

Chen²,

Babar³

2021

Preprint

View full text Add to dashboard Cite

show abstract

“…Later, Sabottke et al [17] developed an exploit prediction model using a dataset acquired from Twitter having links to CVE-IDs and from Symantec threat signatures for the positive labels. Of late, Almukaynizi et al [18] deduced a model that considers data from various sources to predict the likelihood of exploitation, and Bhatt et al [19] developed an exploit prediction framework and claimed it a highly effective approach for the exploit that could be seen in the wild.…”

Section: Literaturementioning

confidence: 99%

Time Lag-Based Modelling for Software Vulnerability Exploitation Process

Anand

Bhatt

Kaur

et al. 2021

JCSANDM

Self Cite

View full text Add to dashboard Cite

With the increase in the discovery of vulnerabilities, the expected exploits occurred in various software platform has shown an increased growth with respect to time. Only after being discovered, the potential vulnerabilities might be exploited. There exists a finite time lag in the exploitation process; from the moment the hackers get information about the discovery of a vulnerability and the time required in the final exploitation. By making use of the time lag approach, we have developed a framework for the vulnerability exploitation process that occurred in multiple stages. The time lag between the discovery and exploitation of a vulnerability has been bridged via the memory kernel function over a finite time interval. The applicability of the proposed model has been validated using various software exploit datasets.

show abstract

An empirical analysis for software robustness vulnerability in terms of modularity quality

Abadeh

Mirzaie

2023

Systems Engineering

View full text Add to dashboard Cite

Modern software architectures such as microservices provide a high degree of scalability, changeability, and maintainability in application development. Furthermore, enabling controlled failure of microservices can provide abstract‐level solutions to design more resilient applications. In this paper, we introduce modularity vulnerability to analyze the vulnerability of a modular software design model under the failure of m top‐rank modules by the proposed structural metrics. The study analyzes the modularity quality coefficient (MQC) under the failure of the critical modules identified using the proposed parameter‐based greedy strategy. We conduct a comprehensive analysis of the software design generated by well‐known models and online datasets and provide a perspective for reasoning about the correlation between modularity metrics. The results show that the failure of the modules with the highest cluster factor (CF) value leads to a maximum decrease in the software modularity quality. Finally, we show a linear correlation between CF and the variations of the MQC, implying stability in the software modularity analysis (SMA) problem.

show abstract

Exploitability prediction of software vulnerabilities

Cited by 24 publications

References 20 publications

A Survey on Data-driven Software Vulnerability Assessment and Prioritization

A Survey on Data-driven Software Vulnerability Assessment and Prioritization

Time Lag-Based Modelling for Software Vulnerability Exploitation Process

An empirical analysis for software robustness vulnerability in terms of modularity quality

Contact Info

Product

Resources

About