Domain 2 of 5 · Chapter 4 of 6

Vulnerability Types

Unlock the complete study guide + 1,040 practice questions across 16 full exams.

Bundled into the existing CompTIA Security+ premium course — no separate purchase.

Included in this chapter:

  • Application and memory flaws: overflow, injection, race conditions, malicious update
  • OS-based, web, and hardware weaknesses
  • Virtualization, cloud, supply chain, cryptographic, misconfiguration, mobile, zero-day
  • Exam-pattern recognition: classifying the weakness

SY0-701 objective 2.3 vulnerability classes: example weakness and where the fix lives

Vulnerability classRepresentative weaknessLayer / ownerPrimary mitigation
ApplicationBuffer overflow, memory injection, race condition (TOCTOU), malicious updateCode / developerInput validation, bounds checking, safe languages, signed updates
OS-basedUnpatched kernel or service flaw, weak defaultsOperating system / sysadminPatch management, secure baseline hardening
WebSQL injection (server-side), cross-site scripting (client-side)Web app / developerParameterized queries, contextual output encoding, CSP
HardwareOutdated firmware, end-of-life and legacy devicesDevice / asset ownerFirmware updates, replacement, isolation of unsupported gear
VirtualizationVM escape, resource reuse leaking residual dataHypervisor / platform teamHypervisor patching, strong tenant isolation, memory/storage sanitization
Cloud-specificShared-responsibility and multi-tenant gapsCloud customer (their share)Correct IAM, storage and network configuration; CSPM
Supply chainInherited flaw via service, hardware, or software providerThird-party vendorVendor assessment, SBOM, code/artifact signing, integrity checks
CryptographicDeprecated algorithm, short key, weak randomness, poor key storageCrypto implementationStrong current algorithms, proper key length and management
MisconfigurationDefault credentials, open buckets, excessive permissionsConfiguration / operatorSecure baselines, least privilege, configuration review
Mobile deviceSideloading, jailbreaking / rootingEndpoint / device userMDM policy, block sideloading, detect rooted/jailbroken devices
Zero-dayFlaw unknown to vendor and public; no patch or signatureAny layer (unknown)Compensating controls, behavioral detection, virtual patching

Cheat sheet

  • A vulnerability is the weakness itself, not the attack on it
  • Buffer overflow writes past a buffer into adjacent memory
  • Memory injection writes attacker code into a running process
  • A race condition / TOCTOU exploits the gap between check and use
  • A malicious update rides in through the trusted patch channel
  • OS-based weaknesses are unpatched flaws or insecure defaults
  • SQLi runs server-side on the database; XSS runs in the victim's browser
  • Parameterized queries are the primary SQLi defense
  • Firmware flaws sit below the OS and survive a reinstall
  • End-of-life means no future patches, so replace it
  • Legacy systems you can't yet retire get isolated and compensated
  • VM escape breaks guest isolation through to the hypervisor
  • Resource reuse leaks residual data from unsanitized memory or storage
  • Cloud-specific weaknesses usually land on the customer's side of the line
  • Supply-chain flaws are inherited from a trusted vendor's product
  • Cryptographic weakness: weak algorithm, key, or randomness
  • Misconfiguration is a wrong setting, not a defect in the code
  • Sideloading and jailbreaking both strip a mobile device's protections
  • A zero-day has no patch or signature yet
  • The deeper in the stack a flaw sits, the bigger its blast radius
  • Match each vulnerability class to its owner and fix
  • Container escape stems from the shared host kernel

Unlock with Premium — includes all practice exams and the complete study guide.

Also tested in

References

  1. CompTIA Security+ (SY0-701) certification and exam objectives
  2. Buffer overflow, NIST glossary
  3. SQL injection, NIST glossary
  4. Hypervisor, NIST glossary
  5. NIST SP 800-125: Guide to Security for Full Virtualization Technologies Whitepaper