all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Spring4Shell Zero-Day Vulnerability: While You’re Waiting for Your WAF

Add to bookmarks
March 31, 2022, 11:06 p.m. | Neil Cohen

Security Boulevard securityboulevard.com

Spring4Shell CVE-2022-22965 A newly disclosed remote code execution vulnerability in Spring Core, a widely used Java framework, has been identified. Exploitation of CVE-2022-22965 has been confirmed as a means of enabling unauthenticated remote code execution on applications. Similar to the recent zero-day vulnerability identified with Log4j CVE-2021-44228, and other events including Heartbleed and Shellshock from [...]


The post Spring4Shell Zero-Day Vulnerability: While You’re Waiting for Your WAF appeared first on Security Boulevard.

industry trends product spring4shell vulnerability waf zero-day vulnerability

Visit resource

More from securityboulevard.com / Security Boulevard

USENIX Security ’23 – UVSCAN: Detecting Third-Party Component Usage Violations in IoT Firmware 6 hours ago | securityboulevard.com
access authors conference events +15
Understanding Cybersecurity Vulnerabilities 8 hours ago | securityboulevard.com
advice attacks can cybersecurity +12
Bridging the Gap: Uniting Development and AppSec 9 hours ago | securityboulevard.com
application security appsec aspm bridging the gap +20
USENIX Security ’23 – Union Under Duress: Understanding Hazards of Duplicate Resource Mismediation in Android … 10 hours ago | securityboulevard.com
access android authors conference +20
Agile by Design: Cybersecurity at the Heart of Transformation 12 hours ago | securityboulevard.com
agile blog business can +25
Cybersecurity Insights with Contrast CISO David Lindner | 4/26/24 12 hours ago | securityboulevard.com
ai analytics & intelligence artificial intelligence audio +26
Segregation of Duties Remediation in Oracle ERP Cloud 12 hours ago | securityboulevard.com
actions articles cloud digital +14
Fix SPF Permerror: Overcome SPF Too Many DNS Lookups Limit 13 hours ago | securityboulevard.com
authentication cybersecurity deliverability dns +6
Announcing the General Availability of TitaniumScale v5.0: Enhancing File Analysis for Advanced Threat Detection 13 hours ago | securityboulevard.com
advanced advanced threat advanced threat detection analysis +23

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Security Engineer 2

@ Oracle | BENGALURU, KARNATAKA, India
View on infosec-jobs.com

Oracle EBS DevSecOps Developer

@ Accenture Federal Services | Arlington, VA
View on infosec-jobs.com

Information Security GRC Specialist - Risk Program Lead

@ Western Digital | Irvine, CA, United States
View on infosec-jobs.com

Senior Cyber Operations Planner (15.09)

@ OCT Consulting, LLC | Washington, District of Columbia, United States
View on infosec-jobs.com

AI Cybersecurity Architect

@ FactSet | India, Hyderabad, DVS, SEZ-1 – Orion B4; FL 7,8,9,11 (Hyderabad - Divyasree 3)
View on infosec-jobs.com
View more jobs