Just over a year ago, OWASP refreshed its list of the top 10 vulnerabilities. Broken access controls moved up four spots to top the list, and it is followed by cryptographic failures, and injection. Three new vulnerabilities made their debut in the new list. In this session, we will discuss the findings of the 2023 “Software Vulnerability Snapshot” report and see vulnerability trends from the past three years. We will also compare vulnerabilities discovered to the OWASP Top 10 list. Additionally, we will cover:

• Vulnerability trends, especially critical- and high-severity vulnerabilities

• Danger from third-party software libraries

• Best practices employed by leading software security programs to manage AppSec risk