Blog - Cyber Security Informer

Search:

DAY

WEEK

MONTH

YEAR

Select your country:
Sign up | Log in

log4shell-the-new-heartbleed

Blog

CISA Adds Five ‘New’ Exploits to KEV Catalog, Including 2014’s Heartbleed Vulnerability

Security Boulevard

MAY 5, 2022

On May 4, 2022, the Cybersecurity & Infrastructure Security Agency (CISA) added five “new” vulnerabilities to the Known Exploited Vulnerabilities (KEV) Catalog. Three of the entries were originally disclosed in 2014, including the infamous Heartbleed vulnerability (CVE-2014-0160).

Cybersecurity

Cybersecurity Risk

Apache Log4j Zero Day Exploit Puts Large Number of Servers at Severe Risk

eSecurity Planet

DECEMBER 10, 2021

The vulnerability – which has been dubbed Log4Shell – has been given a severity score of 10/10, the highest score possible. Log4Shell reportedly also can impact the default configurations of several Apache frameworks, such as Apache Struts2, Apache Druid and Apache Flink. release of Log4j 2 that fixes the RCE vulnerability.

Risk

Risk Software Cybersecurity Firewall

Secure Software Summit: The State of OSS Supply Chain Security

Security Boulevard

MARCH 17, 2022

As evidenced by the recent Log4Shell vulnerability, the OSS supply chain is increasingly a focus for attackers seeking to exploit weak links in security. As evidenced by the recent Log4Shell vulnerability, the OSS supply chain is increasingly a focus for attackers seeking to exploit weak links in security. By Dan Lorenc, Chainguard.

Software

Software Risk Malware Internet

Webinars

Reimagining Cybersecurity Training: Driving Real Impact on Security Culture

MORE WEBINARS

CISA Adds Five ‘New’ Exploits to KEV Catalog, Including 2014’s Heartbleed Vulnerability

Apache Log4j Zero Day Exploit Puts Large Number of Servers at Severe Risk

Secure Software Summit: The State of OSS Supply Chain Security

Webinars

Stay Connected