all InfoSec news
Spring4Shell Zero-Day Vulnerability: While You’re Waiting for Your WAF
March 31, 2022, 11:06 p.m. | Neil Cohen
Security Boulevard securityboulevard.com
Spring4Shell CVE-2022-22965 A newly disclosed remote code execution vulnerability in Spring Core, a widely used Java framework, has been identified. Exploitation of CVE-2022-22965 has been confirmed as a means of enabling unauthenticated remote code execution on applications. Similar to the recent zero-day vulnerability identified with Log4j CVE-2021-44228, and other events including Heartbleed and Shellshock from [...]
The post Spring4Shell Zero-Day Vulnerability: While You’re Waiting for Your WAF appeared first on Security Boulevard.
industry trends product spring4shell vulnerability waf zero-day vulnerability
More from securityboulevard.com / Security Boulevard
Jobs in InfoSec / Cybersecurity
SOC 2 Manager, Audit and Certification
@ Deloitte | US and CA Multiple Locations
Security Engineer 2
@ Oracle | BENGALURU, KARNATAKA, India
Oracle EBS DevSecOps Developer
@ Accenture Federal Services | Arlington, VA
Information Security GRC Specialist - Risk Program Lead
@ Western Digital | Irvine, CA, United States
Senior Cyber Operations Planner (15.09)
@ OCT Consulting, LLC | Washington, District of Columbia, United States
AI Cybersecurity Architect
@ FactSet | India, Hyderabad, DVS, SEZ-1 – Orion B4; FL 7,8,9,11 (Hyderabad - Divyasree 3)