SEARCH
Archive
Researchers Find Log4Shell Type Flaw in H2 Database Console
Researchers have found a Log4Shell-like flaw in the H2 database console, which allows remote code execution.
Attacks Target Log4j Bug in VMware Horizon
An unknown threat group is exploiting the Log4j vulnerability in VMware Horizon servers to install webshells for further malicious activity.
CISA: Federal Agencies Taking Steps to Address Log4j Flaw
CISA said that thousands of internet-connected assets have been mitigated by federal agencies under its Emergency Directive that addressed the Log4j flaw.
CISA Issues Emergency Directive For Log4j Flaw
Federal agencies have until Dec. 23 to track down systems vulnerable to Log4j and apply patches or mitigations.
New Log4j Flaw Allows Remote Code Execution
The newer Log4j vulnerability (CVE-2021-45046) can allow remote code execution in some circumstances on macOS.