Security news aggregator

Latest cybersecurity reporting from selected sources.

Yasna brings together recent headlines from selected sources and makes them easier to sort with tags, filters, and search.

2 headlines in this view

Showing 2 most recent headlines Filtered view

Bleeping Computer 2 years, 5 months ago

Over 30% of Log4J apps use a vulnerable version of the library

Roughly 38% of applications using the Apache Log4j library are using a version vulnerable to security issues, including Log4Shell, a critical vulnerability identified as CVE-2021-44228 that carries the maximum severity rating, despite patches being available for more than two years. [...]

More from Bleeping Computer 11 Dec 2023, 4:35 a.m. Actively exploited CVE-2021-44228 Apache CVE Critical Library Log4Shell Log4j Patch Vulnerability

Dark Reading 3 years, 7 months ago

Researchers Keep a Wary Eye on Critical New Vulnerability in Apache Commons Text

There's nothing yet to suggest CVE-2022-42889 is the next Log4j. But proof-of-concept code is available, and interest appears to be ticking up.

More from Dark Reading 18 Oct 2022, 9:08 a.m. CVE-2022-42889 Apache CVE Critical Log4j PoC Research Vulnerability

Latest cybersecurity reporting from selected sources.

Refine the feed

Volume over time

Fresh headlines available

Over 30% of Log4J apps use a vulnerable version of the library

Researchers Keep a Wary Eye on Critical New Vulnerability in Apache Commons Text