Brain Dump

Flaws vs. Vulnerabilities

Tags
security

Both relate to security threats. Flaws are things that are wrong or could be better. Vulnerabilities are flaws that can be exploited by an attacker.

This means vulnerabilities are flaws that are be accessible (attacker must be able to get at them) and exploitable (hacker must be able to get some damage with it).

For [see page 32, example] disabling bluetooth can turn a vulnerability into a flaw.