A vulnerability detection device (10) includes a vulnerability portion extracting unit (13) that extracts a first program code corresponding to an uncorrected vulnerability portion of software, a normalization processing unit (14) that normalizes a parameter varying depending on compilation environment, among parameters included in the extracted first program code and in a second program code of software as a target to be tested for the vulnerability portion, a similarity calculating unit (15) that calculates a similarity of an arbitrary portion of the second program code after normalization as a comparison target to the first program code, and a determining unit (16) that refers to vulnerability related information for a portion of the second program code in which the calculated first similarity exceeds a predetermined threshold, and that determines whether the portion of the second program code is an unknown vulnerability portion.
展开▼