Skip to main content

Beyond CVEs: Uncovering the Hidden Threat of End‑of‑Life Software

Justin Nemmers
Director, GTM Partnerships, HeroDevs

Security teams are conditioned to chase CVEs—but what about the vulnerabilities that aren’t patchable, or aren’t even disclosed? In this talk, we’ll explore how End-of-Life (EOL) software creates a dangerous blind spot in modern security programs. From packages quietly abandoned by maintainers to high-risk libraries with no upgrade path, we’ll examine how unsupported components persist across CI/CD pipelines, SBOMs, and production environments—often long after they’ve been forgotten.

Cookie Consent

We use cookies to improve your experience and for analytics.
Privacy Preferences
I use cookies to ensure the basic functionalities of the website and to enhance your online experience. You can choose for each category to opt-in/out whenever you want. For more details relative to cookies and other sensitive data, please read the full privacy policy.
Essential cookies
Required
Marketing cookies
Analytics cookies
Personalization cookies