Operating system (OS) command injection vulnerabilities are a preventable class of vulnerability in software products. Software manufacturers can eliminate them at the source by taking a secure by design approach. Despite this fact, OS command injection vulnerabilities continue to surface, allowing adversaries to exploit them to cause harm. Cybersecurity and Infrastructure Security agency and Federal Bureau of Investigation urge CEOs and other business leaders at technology manufacturers to request their technical leaders to analyze past occurrences of this class of defect and develop a plan to eliminate them in the future.
Format: |
|
Topics: | |
Website: | Visit Publisher Website |
Publisher: | Cybersecurity and Infrastructure Security Agency (CISA) |
Published: | July 1, 2024 |
License: | Public Domain |