Software has bugs and it seems to be unavoidable. To find them we often use code reviews and software testing. However, test an application and find no bugs does not mean the application is correct. Model checking is an automatic technique that can guarantee the absence of bugs (i.e. the correctness of a system) given a formal specification. This presentation shows the results of an empirical study on Bounded Model Checking in security context to verify its ability in identifying vulnerable code regions where multiple vulnerabilities in the code can affect each other in their detection.