all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Four in five Apache Struts 2 downloads are for versions featuring critical flaw

Add to bookmarks
Dec. 21, 2023, 2:13 p.m. | Connor Jones

The Register - Security www.theregister.com

Seriously, people - please check the stuff you fetch more carefully

Security vendor Sonatype believes developers are failing to address the critical remote code execution (RCE) vulnerability in the Apache Struts 2 framework, based on recent downloads of the code.…

address apache apache struts apache struts 2 check code code execution critical critical flaw developers downloads fetch flaw framework people rce remote code remote code execution security security vendor sonatype struts struts 2 vendor vulnerability

Visit resource

More from www.theregister.com / The Register - Security

Twitch ditches Safety Advisory Council, relaunches with vetted 'ambassadors' 1 day, 9 hours ago | www.theregister.com
advisory army council dismantled +7
Snowflake denies miscreants melted its security to steal data from top customers 1 day, 10 hours ago | www.theregister.com
analysts claims cloud cloud storage +15
US senator claims UnitedHealth's CEO, board appointed 'unqualified' CISO 1 day, 11 hours ago | www.theregister.com
appointed board cases catastrophe +21
Cyber cops plead for info on elusive Emotet mastermind 1 day, 13 hours ago | www.theregister.com
arrests big calling cops +10
New Nork-ish cyberespionage outfit uncovered after three years 1 day, 17 hours ago | www.theregister.com
cyber cybercrime cyberespionage data +8
Google to push ahead with Chrome's ad-blocker extension overhaul in earnest 1 day, 21 hours ago | www.theregister.com
access beta blocker browser +14
FlyingYeti phishing crew grounded after abominable Ukraine attacks 2 days, 2 hours ago | www.theregister.com
attack attacks claims cloudflare +13
Mystery miscreant remotely bricked 600,000 SOHO routers with malicious firmware update 2 days, 8 hours ago | www.theregister.com
assault bricked devices disabling +14
OpenAI is very smug after thwarting five ineffective AI covert influence ops 2 days, 9 hours ago | www.theregister.com
ai services covert elections generative +9

Jobs in InfoSec / Cybersecurity

Post a Job Search Talent

CyberSOC Technical Lead

@ Integrity360 | Sandyford, Dublin, Ireland
View on infosec-jobs.com

Cyber Security Strategy Consultant

@ Capco | New York City
View on infosec-jobs.com

Cyber Security Senior Consultant

@ Capco | Chicago, IL
View on infosec-jobs.com

Sr. Product Manager

@ MixMode | Remote, US
View on infosec-jobs.com

Security Compliance Strategist

@ Grab | Petaling Jaya, Malaysia
View on infosec-jobs.com

Cloud Security Architect, Lead

@ Booz Allen Hamilton | USA, VA, McLean (1500 Tysons McLean Dr)
View on infosec-jobs.com