One month into the Log4j vulnerability, we take a look at the 3 CVEs and their fixes, known exploits being observed in the wild, and a way forward in dealing with the ubiquitous and targeted Java library.
January 7, 2022 01:15 GMT
Updates and recommended guidance for identifying vulnerable servers and mitigating exploit attempts.
December 13, 2021 20:18 GMT
A high-severity zero-day has been uncovered in Apache Log4j which could allow a log injection RCE exploit.
December 10, 2021 18:45 GMT
The popular Apache HTTP Server has received an update to patch a directory traversal vulnerability on versions 2.4.49 and 2.4.50,…
October 8, 2021 17:01 GMT