This is an honor that Apple might have wanted to do without. According to the site CVEdetails.com, Mac OS X is found in top of the ranking of the number of vulnerabilities found in 2015. Last year, security researchers found 384 flaws in Apple’s operating system. This is a new record. It is followed by another OS Apple iOS (375 faults) and Flash Player (314). For comparison, 151 vulnerabilities were found in Windows 8.1 and 130 in Android.
What can we deduce from these figures? Well not much really. The fact that we have found a lot of security flaws in a system does not mean it is less secure than another. It simply means that he was auscultated by many security researchers, which is very reassuring.
In addition, this ranking obviously ignores faults that have not been made public but which may flow under the coat in the Darknet. It does not make either account the actual risk from hackers. The obvious example is iOS. The mobile system of Apple totals three times more vulnerabilities than Android, while it attracts almost all malware circulating on smartphones.
Criticality, a more interesting indicator
It may be interesting to look at the average criticality of vulnerabilities found, as can be seen as an indicator for the quality the underlying code vis-a-vis security. For Mac OS X, the weighted average is relatively low (6.8 out of 10). The lowest scores are those of Oracle MySQL (5.0), Oracle Fusion Middleware (5.4) and Linux Kernel (5.5). The highest scores are achieved for Adobe Air SDK (9.6) Adobe Air (9.5), Microsoft Office (9.4) and Adobe Flash Player (9.4).
No comments:
Post a Comment