Lesson 13 - OWASP Top 10 2017 - A9:2017-Using Components with Known Vulnerabilities

AppSec Starter is a basic application security awareness training applied to onboarding new developers. It is not the purpose of this training to discuss advanced and practical topics. Conviso has customized training and practical training platforms.

Training recorded by Nicolas Schmaltz and copyright reserved to Conviso Application Security S/A.

Lesson 13 Contents:

Components such as libraries, frameworks and other software modules run with the same privileges as the application. Abusing a vulnerable component can lead to serious loss of data or complete control of a server. Applications and APIs that use components with known vulnerabilities can weaken the application's defenses, allowing for various attacks and impacts.