VULEUT is a novel framework that automatically verifies the exploitability of vulnerabilities in third-party libraries by generating test cases that can trigger these vulnerabilities.

• Addresses the critical gap between vulnerability disclosure and actual exploitation risk
• Generates precise test inputs that can propagate through client applications to trigger library vulnerabilities
• Achieves superior accuracy compared to existing tools in identifying truly exploitable security flaws
• Provides actionable insights for developers to assess real security risks in their dependency chain

This research matters because it helps organizations prioritize security efforts based on actual exploitation risk rather than theoretical vulnerabilities, significantly reducing false positives and improving resource allocation for security teams.

Vulnerability-Triggering Test Case Generation from Third-Party Libraries