GIGAZINE

Microsoft announces that the Hacking Group with the support of China, Iran, North Korea and Turkey is exploiting Log4j's zero-day vulnerability 'Log4Shell'

On December 14, 2021, a zero-day vulnerability 'Log4Shell ' that allows Microsoft to execute remote code that existed in Java's Log4j library is used by government-affiliated hacking groups related to ...
Computing

Critical H2 database vulnerability similar to Log4Shell disclosed

All H2 users should upgrade to the newest version 2.0.206 which is patched for the flaw Researchers at software company JFrog have uncovered a new vulnerability affecting H2 database consoles that ...
Computing

Apache Commons Text vulnerability not as serious as Log4Shell, researchers say

The newly disclosed RCE bug stems from the insecure implementation of Commons Text's variable interpolation feature, but it is hard to exploit Over the last few days, security researchers have been ...