Seven in 10 applications use at least one flawed open source library, new study finds. The vulnerability of open source libraries varies across languages and frameworks. Developers need to take into consideration the characteristics of the framework they are working with, says Veracode. The report underscores that a lack of patching continues to be the No. 1 problem for application-security programs. Fixing such issues is critical because attackers regularly use older vulnerabilities to attack systems and applications, the US Cybersecurity and Infrastructure Security Agency says.”]