Bug, Fault, Error, or Weakness: Demystifying Software Security Vulnerabilities

Irena Bojanova; Carlos Eduardo Cardoso Galhardo

Official websites use .gov
A .gov website belongs to an official government organization in the United States.

Secure .gov websites use HTTPS
A lock ( ) or https:// means you’ve safely connected to the .gov website. Share sensitive information only on official, secure websites.

PUBLICATIONS

Bug, Fault, Error, or Weakness: Demystifying Software Security Vulnerabilities

Published

February 1, 2023

Author(s)

Irena Bojanova, Carlos Eduardo Cardoso Galhardo

Abstract

In this work, we define the notions of software bug, weakness, and vulnerability in the context of cybersecurity and elucidate their causal relations.

Citation

IEEE IT Professional

Volume

Issue

Pub Type

Journals

Download Paper

https://doi.org/10.1109/MITP.2023.3238631

Local Download

Keywords

Bug, Fault, Weakness, Vulnerability, Security Failure

Software research, Information technology and Cybersecurity

Citation

Bojanova, I. and Cardoso Galhardo, C. (2023), Bug, Fault, Error, or Weakness: Demystifying Software Security Vulnerabilities, IEEE IT Professional, [online], https://doi.org/10.1109/MITP.2023.3238631, https://tsapps.nist.gov/publication/get_pdf.cfm?pub_id=936191 (Accessed March 14, 2025)

Issues

If you have any questions about this publication or are having problems accessing it, please contact reflib@nist.gov.

Created February 1, 2023, Updated July 11, 2023

Bug, Fault, Error, or Weakness: Demystifying Software Security Vulnerabilities

Author(s)

Abstract

Download Paper

Keywords

Citation

Additional citation formats

Issues