Secunia Research

The Secunia Research team from Flexera is comprised of a number of security specialists who—in addition to testing, verifying, and validating public vulnerability reports—conduct their own vulnerability research in various products. Since the founding of the Secunia Research team in 2002, it has been our goal to be provide the most accurate and reliable source of vulnerability intelligence.

Delivering the world’s best vulnerability intelligence requires skill and passion. The members of our team continually develop their skills exploring various high-profile closed and open source software using a variety of approaches, focusing chiefly on thorough code audits and binary analysis.   In 2019 a member of our team was recognized by Microsoft’s Most Valuable Security Researchers list.

This enables Secunia researchers to discover hard-to-find vulnerabilities that are not normally identified via techniques such as fuzzing, and the approach has been effective. Members of the Secunia Research team have discovered critical vulnerabilities in products from vendors including Microsoft, Symantec, IBM, Adobe, RealNetworks, Trend Micro, HP, Blue Coat, Samba, CA, Mozilla, and Apple.

The team produces invaluable security advisories based upon the research of the vulnerabilities affecting any given software update. Sometimes a single update can address multiple vulnerabilities of varying criticalities and threats; but these advisories aggregate and distill findings down to a single advisory perfect for the prioritization of patch efforts. In these advisories, criticality scores are consistently applied along with details around attack vector and other valuable details. Illegitimate vulnerability reports are also investigated and rejected so you can focus only on what truly matters.

Flexera Annual Vulnerability Review Report

The annual Vulnerability Review analyzes the evolution of software security from a vulnerability perspective presenting global data on the prevalence of vulnerabilities and the availability of patches, and maps the security threats to IT infrastructures.

View Report

Vulnerability Disclosure

The Secunia Research Team is deeply committed to discovering new vulnerabilities, focusing on popular, widely used enterprise and end-user software used by the community. When discovered, these vulnerabilities are always reported to the vendors with whom we work to get the vulnerabilities fixed according to our responsible disclosure policy.

Read Policy

Protect Your IT Estate from Software Vulnerabilities

The only way to keep your IT estate safe is to prioritize patching based on business risk, which requires deep insight into the vulnerabilities themselves. You can gain this insight only through trustworthy vulnerability research and threat intelligence.

View eBook