{"status":"ok","message-type":"work","message-version":"1.0.0","message":{"indexed":{"date-parts":[[2025,9,11]],"date-time":"2025-09-11T19:07:25Z","timestamp":1757617645509,"version":"3.44.0"},"publisher-location":"Cham","reference-count":36,"publisher":"Springer Nature Switzerland","isbn-type":[{"type":"print","value":"9783031834714"},{"type":"electronic","value":"9783031834721"}],"license":[{"start":{"date-parts":[[2025,1,1]],"date-time":"2025-01-01T00:00:00Z","timestamp":1735689600000},"content-version":"tdm","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"},{"start":{"date-parts":[[2025,1,1]],"date-time":"2025-01-01T00:00:00Z","timestamp":1735689600000},"content-version":"vor","delay-in-days":0,"URL":"https:\/\/www.springernature.com\/gp\/researchers\/text-and-data-mining"}],"content-domain":{"domain":["link.springer.com"],"crossmark-restriction":false},"short-container-title":[],"published-print":{"date-parts":[[2025]]},"DOI":"10.1007\/978-3-031-83472-1_3","type":"book-chapter","created":{"date-parts":[[2025,3,15]],"date-time":"2025-03-15T12:13:36Z","timestamp":1742040816000},"page":"35-48","update-policy":"https:\/\/doi.org\/10.1007\/springer_crossmark_policy","source":"Crossref","is-referenced-by-count":0,"title":["Enhanced Classification of\u00a0Embedded System Vulnerabilities Using Ensemble Embedding and\u00a0BiLSTM Networks"],"prefix":"10.1007","author":[{"ORCID":"https:\/\/orcid.org\/0000-0002-5437-2745","authenticated-orcid":false,"given":"Aissa Ben","family":"Yahya","sequence":"first","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0003-4488-3338","authenticated-orcid":false,"given":"Hicham","family":"El Akhal","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]},{"ORCID":"https:\/\/orcid.org\/0000-0001-9462-2932","authenticated-orcid":false,"given":"Abdelbaki","family":"El Belrhiti El Alaoui","sequence":"additional","affiliation":[],"role":[{"role":"author","vocabulary":"crossref"}]}],"member":"297","published-online":{"date-parts":[[2025,3,16]]},"reference":[{"key":"3_CR1","unstructured":"NVD feeds. https:\/\/nvd.nist.gov\/vuln\/data-feeds"},{"key":"3_CR2","doi-asserted-by":"crossref","unstructured":"Ben\u00a0Yahya, A., El\u00a0Akhal, H., El\u00a0Alaoui, A.E.B.: Machine learning-based collection and analysis of embedded systems vulnerabilities. In: Enhancing Performance, Efficiency, and Security Through Complex Systems Control, pp. 242\u2013261. IGI Global (2024)","DOI":"10.4018\/979-8-3693-0497-6.ch014"},{"key":"3_CR3","doi-asserted-by":"crossref","unstructured":"Blinowski, G.J., Piotrowski, P.: CVE based classification of vulnerable IoT systems. In: Proceedings of the 15th International Conference on Dependability & Complex Systems (DepCoS), pp. 82\u201393 (2020)","DOI":"10.1007\/978-3-030-48256-5_9"},{"key":"3_CR4","doi-asserted-by":"publisher","first-page":"135","DOI":"10.1162\/tacl_a_00051","volume":"5","author":"P Bojanowski","year":"2017","unstructured":"Bojanowski, P., Grave, E., Joulin, A., Mikolov, T.: Enriching word vectors with subword information. Trans. Assoc. Comput. Linguist. 5, 135\u2013146 (2017)","journal-title":"Trans. Assoc. Comput. Linguist."},{"key":"3_CR5","doi-asserted-by":"publisher","first-page":"110616","DOI":"10.1016\/j.jss.2020.110616","volume":"167","author":"J Chen","year":"2020","unstructured":"Chen, J., et al.: An automatic software vulnerability classification framework using term frequency-inverse gravity moment and feature selection. J. Syst. Softw. 167, 110616 (2020)","journal-title":"J. Syst. Softw."},{"key":"3_CR6","unstructured":"CNNVD: Chinese national vulnerability database (2024). https:\/\/www.cnnvd.org.cn\/. Accessed August 2024"},{"key":"3_CR7","unstructured":"CNVD: China national vulnerability database (2024). https:\/\/www.cnvd.org.cn\/. Accessed June 2024"},{"key":"3_CR8","doi-asserted-by":"publisher","first-page":"107290","DOI":"10.1016\/j.infsof.2023.107290","volume":"163","author":"Y Dong","year":"2023","unstructured":"Dong, Y., Tang, Y., Cheng, X., Yang, Y.: DeKeDVer: a deep learning-based multi-type software vulnerability classification framework using vulnerability description and source code. Inf. Softw. Technol. 163, 107290 (2023)","journal-title":"Inf. Softw. Technol."},{"key":"3_CR9","unstructured":"FortiGuard: Fortiguard (2024). https:\/\/www.fortiguard.com\/. Accessed June 2024"},{"key":"3_CR10","unstructured":"Franceschi-Bicchierai, L.: How this internet of things stuffed animal can be remotely turned into a spy device (2017). https:\/\/tinyurl.com\/yc4xfdpd"},{"key":"3_CR11","unstructured":"Google translate API: Google translate API (2024). https:\/\/pypi.org\/project\/googletrans\/. Accessed July 2024"},{"key":"3_CR12","doi-asserted-by":"crossref","unstructured":"Han, Z., et al.: Learning to predict severity of software vulnerability using only vulnerability description. In: Proceedings of the IEEE International Conference on Software Maintenance and Evolution (ICSME), pp. 125\u2013136 (2017)","DOI":"10.1109\/ICSME.2017.52"},{"key":"3_CR13","doi-asserted-by":"publisher","first-page":"28291","DOI":"10.1109\/ACCESS.2019.2900462","volume":"7","author":"G Huang","year":"2019","unstructured":"Huang, G., et al.: Automatic classification method for software vulnerability based on deep neural network. IEEE Access 7, 28291\u201328298 (2019)","journal-title":"IEEE Access"},{"key":"3_CR14","unstructured":"ICS-CERT: Industrial control systems cyber emergency response team (2024). https:\/\/www.cisa.gov\/. Accessed June 2024"},{"key":"3_CR15","first-page":"103028","volume":"63","author":"H Kek\u00fcl","year":"2021","unstructured":"Kek\u00fcl, H., Ergen, B., Arslan, H.: A multiclass hybrid approach to estimating software vulnerability vectors and severity score. J. Inf. Secur. Appl. 63, 103028 (2021)","journal-title":"J. Inf. Secur. Appl."},{"key":"3_CR16","doi-asserted-by":"crossref","unstructured":"Kudjo, P.K., et al.: Improving the accuracy of vulnerability report classification using term frequency-inverse gravity moment. In: Proceedings of the 19th IEEE International Conference on Software Quality, Reliability & Security (QRS), pp. 248\u2013259 (2019)","DOI":"10.1109\/QRS.2019.00041"},{"key":"3_CR17","doi-asserted-by":"crossref","unstructured":"Li, X., Chang, X., Board, J.A., Trivedi, K.S.: A novel approach for software vulnerability classification. In: Proceedings Annual Reliability and Maintainability Symposium (RAMS), pp.\u00a01\u20137 (2017)","DOI":"10.1109\/RAM.2017.7889792"},{"key":"3_CR18","unstructured":"Mikolov, T., Chen, K., Corrado, G., Dean, J.: Efficient estimation of word representations in vector space. arXiv:1301.3781 (2013)"},{"key":"3_CR19","doi-asserted-by":"crossref","unstructured":"Na, S., Kim, T., Kim, H.: A study on the classification of common vulnerabilities and exposures using na\u00efve Bayes. In: Proceedings of the 11th International Conference on Broad-Band Wireless Computing, Communication & Applications (BWCCA), pp. 657\u2013662 (2017)","DOI":"10.1007\/978-3-319-49106-6_65"},{"key":"3_CR20","unstructured":"Newman, L.H.: A new pacemaker hack puts malware directly on the device. Wired (2018). https:\/\/www.wired.com\/story\/pacemaker-hack-malware-black-hat\/"},{"key":"3_CR21","unstructured":"Nie, S., Liu, L., Du, Y.: Free-fall: hacking tesla from wireless to can bus. In: Black Hat conference US (2017). https:\/\/www.blackhat.com\/docs\/us-17\/thursday\/us-17-Nie-Free-Fall-Hacking-Tesla-From-Wireless-To-CAN-Bus-wp.pdf"},{"key":"3_CR22","unstructured":"NVD: National vulnerability database (2024). https:\/\/nvd.nist.gov\/. Accessed June 2024"},{"key":"3_CR23","doi-asserted-by":"crossref","unstructured":"Pan, M., et al.: An automatic vulnerability classification framework based on BiGRU-TextCNN. In: Proceedings International Neural Network Society Workshop on Deep Learning Innovations & Applications (INNS DLIA), vol.\u00a0222, pp. 377\u2013386 (2023)","DOI":"10.1016\/j.procs.2023.08.176"},{"key":"3_CR24","doi-asserted-by":"crossref","unstructured":"Papp, D., Ma, Z., Buttyan, L.: Embedded systems security: threats, vulnerabilities, and attack taxonomy. In: Proceedings of the 13th Annual Conference on Privacy, Security & Trust (PST), pp. 145\u2013152 (2015)","DOI":"10.1109\/PST.2015.7232966"},{"key":"3_CR25","doi-asserted-by":"crossref","unstructured":"Pennington, J., Socher, R., Manning, C.D.: GloVe: global vectors for word representation. In: Proceedings of the Conference on Empirical Methods in Natural Language Processing (EMNLP), pp. 1532\u20131543 (2014)","DOI":"10.3115\/v1\/D14-1162"},{"key":"3_CR26","unstructured":"Prigg, M.: How to get green lights all the way to work: hackers reveal how simple it is to control traffic lights in major cities using just a laptop. Mail Online (2014). https:\/\/tinyurl.com\/vjzyc7jx"},{"key":"3_CR27","doi-asserted-by":"crossref","unstructured":"Rios, A., Lwowski, B.: An empirical study of the downstream reliability of pre-trained word embeddings. In: Proceedings of the 28th International Conference on Computational Linguistics (COLING) (2020)","DOI":"10.18653\/v1\/2020.coling-main.299"},{"key":"3_CR28","doi-asserted-by":"publisher","first-page":"58","DOI":"10.1007\/s13198-020-01021-7","volume":"12","author":"R Sharma","year":"2021","unstructured":"Sharma, R., Sibal, R., Sabharwal, S.: Software vulnerability prioritization using vulnerability description. Int. J. Syst. Assur. Eng. Manage. 12, 58\u201364 (2021)","journal-title":"Int. J. Syst. Assur. Eng. Manage."},{"key":"3_CR29","unstructured":"Stanislav, M., Beardsley, T.: Hacking IoT: a case study on baby monitor exposures and vulnerabilities. Rapid7 (2015). https:\/\/tinyurl.com\/b8njhadw"},{"key":"3_CR30","unstructured":"VarIoT: VARIoT IoT vulnerabilities database (2024). https:\/\/www.variotdbs.pl\/vulns\/. Accessed August 2024"},{"key":"3_CR31","doi-asserted-by":"publisher","first-page":"1","DOI":"10.1007\/s10922-021-09624-6","volume":"30","author":"P Vishnu","year":"2022","unstructured":"Vishnu, P., Vinod, P., Yerima, S.Y.: A deep learning approach for classifying vulnerability descriptions using self attention based neural network. J. Netw. Syst. Manage. 30, 1\u201327 (2022)","journal-title":"J. Netw. Syst. Manage."},{"key":"3_CR32","doi-asserted-by":"crossref","unstructured":"Wang, J.A., Guo, M.: Vulnerability categorization using Bayesian networks. In: Proceedings of the 6th Annual Workshop on Cyber Security & Information Intelligence Research, pp.\u00a01\u20134 (2010)","DOI":"10.1145\/1852666.1852699"},{"key":"3_CR33","doi-asserted-by":"crossref","unstructured":"Wang, Q., Gao, Y., Ren, J., Zhang, B.: An automatic classification algorithm for software vulnerability based on weighted word vector and fusion neural network. Comput. Secur. 103070 (2022)","DOI":"10.1016\/j.cose.2022.103070"},{"key":"3_CR34","doi-asserted-by":"publisher","first-page":"103070","DOI":"10.1016\/j.cose.2022.103070","volume":"126","author":"Q Wang","year":"2023","unstructured":"Wang, Q., Gao, Y., Ren, J., Zhang, B.: An automatic classification algorithm for software vulnerability based on weighted word vector and fusion neural network. Comput. Secur. 126, 103070 (2023)","journal-title":"Comput. Secur."},{"issue":"2","key":"3_CR35","doi-asserted-by":"publisher","first-page":"107","DOI":"10.12720\/jcm.10.2.107-116","volume":"10","author":"T Wen","year":"2015","unstructured":"Wen, T., Zhang, Y., Wu, Q., Yang, G.: ASVC: an automatic security vulnerability categorization framework based on novel features of vulnerability data. J. Commun. 10(2), 107\u2013116 (2015)","journal-title":"J. Commun."},{"key":"3_CR36","unstructured":"ZDI: Zero-day initiative (2024). https:\/\/www.zerodayinitiative.com\/. Accessed June 2024"}],"container-title":["Lecture Notes in Computer Science","Database Engineered Applications"],"original-title":[],"language":"en","link":[{"URL":"https:\/\/link.springer.com\/content\/pdf\/10.1007\/978-3-031-83472-1_3","content-type":"unspecified","content-version":"vor","intended-application":"similarity-checking"}],"deposited":{"date-parts":[[2025,9,6]],"date-time":"2025-09-06T09:14:22Z","timestamp":1757150062000},"score":1,"resource":{"primary":{"URL":"https:\/\/link.springer.com\/10.1007\/978-3-031-83472-1_3"}},"subtitle":[],"short-title":[],"issued":{"date-parts":[[2025]]},"ISBN":["9783031834714","9783031834721"],"references-count":36,"URL":"https:\/\/doi.org\/10.1007\/978-3-031-83472-1_3","relation":{},"ISSN":["0302-9743","1611-3349"],"issn-type":[{"type":"print","value":"0302-9743"},{"type":"electronic","value":"1611-3349"}],"subject":[],"published":{"date-parts":[[2025]]},"assertion":[{"value":"16 March 2025","order":1,"name":"first_online","label":"First Online","group":{"name":"ChapterHistory","label":"Chapter History"}},{"value":"The authors have no competing interests to declare that\u00a0are relevant to the content of this article.","order":1,"name":"Ethics","group":{"name":"EthicsHeading","label":"Disclosure of Interests"}},{"value":"IDEAS","order":1,"name":"conference_acronym","label":"Conference Acronym","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"International Database Engineered Applications Symposium","order":2,"name":"conference_name","label":"Conference Name","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"Bayonne","order":3,"name":"conference_city","label":"Conference City","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"France","order":4,"name":"conference_country","label":"Conference Country","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"2024","order":5,"name":"conference_year","label":"Conference Year","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"28 August 2024","order":7,"name":"conference_start_date","label":"Conference Start Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"31 August 2024","order":8,"name":"conference_end_date","label":"Conference End Date","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"28","order":9,"name":"conference_number","label":"Conference Number","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"ideas-12024","order":10,"name":"conference_id","label":"Conference ID","group":{"name":"ConferenceInfo","label":"Conference Information"}},{"value":"https:\/\/conferences.sigappfr.org\/ideas2024\/","order":11,"name":"conference_url","label":"Conference URL","group":{"name":"ConferenceInfo","label":"Conference Information"}}]}}