all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

New text2shell RCE vulnerability in Apache Common Texts CVE-2022-42889

Add to bookmarks
Oct. 18, 2022, 5:02 a.m. | Ivanwallarm

Security Boulevard securityboulevard.com

Yet another RCE with a CVSS score of 9.8 out of 10 was disclosed a few hours ago. This issue looks like the same Log4shell and it seems even more dangerous since Common Texts are used more broadly. The Apache Foundation published a vulnerability in the Apache Commons Text project code and published a message [...]


The post New text2shell RCE vulnerability in Apache Common Texts CVE-2022-42889 appeared first on Wallarm.


The post New text2shell RCE vulnerability in Apache …

apache api security application security cloud security cve cve-2022-42889 devops different attack types rce researcher corner vulnerability waf waf evaluation web application security

Visit resource

More from securityboulevard.com / Security Boulevard

USENIX Security ’23 – Silent Bugs Matter: A Study of Compiler-Introduced Security Bugs 8 hours ago | securityboulevard.com
access authors bing bugs +16
The Real Risk is Not Knowing Your Real Risk: Perspectives from Asia Pacific Tour with … 22 hours ago | securityboulevard.com
asia asia pacific balbix customer +15
DD2345 Military Critical Technical Data Agreement and CMMC 23 hours ago | securityboulevard.com
agreement business can cmmc +9
Airsoft Data Breach Exposes Data of 75,000 Players 1 day ago | securityboulevard.com
airsoft attack surface authentication breach +31
Get SOAR Savvy Before RSAC 2024: 5 Reads to Level Up Your SOC 1 day ago | securityboulevard.com
and response automation check d3 security +24
Cloud Monitor Automation Thwarts Phishing & Malware Emails 1 day, 1 hour ago | securityboulevard.com
automation chief cloud cybersecurity +27
MY TAKE: Is Satya Nadella’s ‘Secure Future Initiative’ a deja vu of ‘Trustworthy Computing?’ 1 day, 3 hours ago | securityboulevard.com
computing conference eve francisco +19
Palo Alto Networks Extends SASE Reach to Unmanaged Devices 1 day, 4 hours ago | securityboulevard.com
alto devices devops devsecops +20
USENIX Security ’23 – Cryptographic Deniability: A Multi-perspective Study of User Perceptions and Expectations 1 day, 4 hours ago | securityboulevard.com
access authors channel conference +17

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Cybersecurity Consultant

@ Devoteam | Cité Mahrajène, Tunisia
View on infosec-jobs.com

GTI Manager of Cybersecurity Operations

@ Grant Thornton | Phoenix, AZ, United States
View on infosec-jobs.com

(Senior) Director of Information Governance, Risk, and Compliance

@ SIXT | Munich, Germany
View on infosec-jobs.com

Information System Security Engineer

@ Space Dynamics Laboratory | North Logan, UT
View on infosec-jobs.com

Intelligence Specialist (Threat/DCO) - Level 3

@ Constellation Technologies | Fort Meade, MD
View on infosec-jobs.com

Cybersecurity GRC Specialist (On-site)

@ EnerSys | Reading, PA, US, 19605
View on infosec-jobs.com
View more jobs