all InfoSec news
Insecure Deserialization in AWS Lambda | What is the Vulnerability and How to Avoid It? | Contrast Security
Aug. 30, 2022, 7:23 p.m. | Matteo Rosi, Security Researcher at Contrast Security
Security Boulevard securityboulevard.com
At the beginning of December, many companies worldwide were hit by the newly discovered vulnerability known as Log4Shell. The CVSS classifies this vulnerability as critical, and the impact could be very severe for those who do not fix it. Log4Shell is entered in the category CWE-502 Deserialization of Untrusted Data, a common language issue known as Common Weakness Enumeration (CWE), provided by MITRE. This category of vulnerability is a regular member of the OWASP Top 10 project.
The post …
aws aws lambda cloud security contrast security deserialization insecure lambda security serverless vulnerability
More from securityboulevard.com / Security Boulevard
Understanding Credential Phishing
1 day, 5 hours ago |
securityboulevard.com
Understanding Business Email Compromise (BEC)
1 day, 6 hours ago |
securityboulevard.com
Jobs in InfoSec / Cybersecurity
CyberSOC Technical Lead
@ Integrity360 | Sandyford, Dublin, Ireland
Cyber Security Strategy Consultant
@ Capco | New York City
Cyber Security Senior Consultant
@ Capco | Chicago, IL
Sr. Product Manager
@ MixMode | Remote, US
Corporate Intern - Information Security (Year Round)
@ Associated Bank | US WI Remote
Senior Offensive Security Engineer
@ CoStar Group | US-DC Washington, DC