all InfoSec news
Log4j vulnerabilities still an issue, but CodeSec audit can help | Contrast Security
Security Boulevard securityboulevard.com
Landing on the incident response boards for software engineering teams worldwide in December 2021, the Log4j vulnerabilities in Java software remain a real concern for developers more than 9 months later.
Apache Log4j is a popular logging library in the Java software development community. Late last year, researchers discovered that it had vulnerabilities which made it susceptible to an attack that forced software to execute malicious code. Later versions of the Log4j tools fixed these problems, but many people are …
appsec audit codesec contrast protect contrast security log4j rasp sca security vulnerabilities