A security flaw, glitch, or weakness found in software code that could be exploited by an attacker (threat source). Sources: NISTIR 8011 Vol. 4 under software vulnerability
NIST SP 800-163 Rev.1 - Adapted
Comments about specific definitions should be sent to the authors of the linked Source publication. For NIST publications, an email is usually found within the document.
Comments about the glossary's presentation and functionality should be sent to email@example.com.