2021 Software Vulnerability Snapshot

An Analysis by Synopsys Application Security Testing Services

The Synopsys Cybersecurity Research Center (CyRC) examined anonymized data from thousands of commercial software security tests performed by Synopsys application security testing services in 2020. The CyRC team measured this data against the 2021 OWASP Top 10 list of the most critical security risks to web applications. 

Download the report


Key findings in the report include  

  • 97% of tests uncovered vulnerabilities 
  • 36% of tests uncovered high or critical severity vulnerabilities 
  • 76% of vulnerabilities uncovered fell into an OWASP Top 10 category  

Download the report to learn what vulnerabilities—such as cross-site scripting, remote code execution, and SQL injection—were most common in commercial software, and why relying solely on automated security tests can leave organizations at risk to cyberattacks and data breaches.