There are two critical RCE vulnerabilities in Java’s Spring Framework.

Wed, 06 Apr 2022 9:32:00
0 minutes, 23 seconds
Dan
  • A new critical Remote Code Execution (RCE) vulnerability (CVE-2022-22963) was discovered in Java’s Spring Cloud Functions. There are patches available for this vulnerability which should be applied to affected systems as soon as possible.
  • A 0-day vulnerability in Spring Core that could lead to u...
Continue Reading

Log4shell - Five Eyes published a scanner for everyone

Sun, 26 Dec 2021 10:42:00
1 minute, 21 seconds
Dan

Log4shell

As you may have heard, since December 9 there is a severe vulnerability called Log4shell (and other Log4j-related vulnerabilities) that affects a wide range of Java applications. The "Apache Log4j2 2.0-beta9 through 2.12.1 and 2.13.0 through 2.15.0 JNDI" library.

Scanners

Five Eye

...
Continue Reading

Log4shell - Five Eyes published a scanner for everyone

Sun, 26 Dec 2021 10:28:16
1 minute, 21 seconds
Dan

Log4shell

As you may have heard, since December 9 there is a severe vulnerability called Log4shell (and other Log4j-related vulnerabilities) that affects a wide range of Java applications. The "Apache Log4j2 2.0-beta9 through 2.12.1 and 2.13.0 through 2.15.0 JNDI" library.

Scanners

Five Eye

...
Continue Reading
1 2 3