Tag: Apache Struts
-
Week in review: Apache Struts vulnerability exploit attempt, EOL Sophos firewalls get hotfix
Here’s an overview of some of last week’s most interesting news, articles, interviews and videos: SCS 9001 2.0 reveals enhanced …
-
Decoding CVE-2023-50164: Unveiling the Apache Struts File Upload Exploit
Apache has recently released an advisory regarding CVE-2023-50164, a critical vulnerability with a severity rating of 9.8 that affects …
-
Recently-patched Apache Struts vulnerability used in worldwide attacks
Attackers are exploiting a critical vulnerability in Apache Struts 2 that was patched recently. Struts is a very popular open source …
-
New RCE vulnerability in Apache Struts 2 fixed, upgrade ASAP (CVE-2023-50164)
The Apache Struts project has released updates for the popular open-source web application framework, with fixes for a critical …
-
Log4Shell update: Attack surface, attacks in the wild, mitigation and remediation
Several days have passed since the dramatic reveal of CVE-2021-44228 (aka Log4Shell), an easily exploitable (without authentication) RCE …
-
At Black Hat, mobile and open-source software emerge as key cybersecurity dangers
Mobile platforms and open-source software emerged as key cybersecurity issues at the annual Black Hat USA cybersecurity conference this …
-
Gitpaste-12 Worm Targets Linux Servers, IoT Devices
The newly discovered malware uses GitHub and Pastebin to house component code, and harbors 12 different initial attack …
-
Potential Apache Struts 2 RCE flaw fixed, PoCs released
Have you already updated your Apache Struts 2 to version 2.5.22, released in November 2019? You might want to, and quickly, as information …
-
Self-Propagating Lucifer Malware Targets Windows Systems
Security experts have identified a self-propagating malware, dubbed Lucifer, that targets Windows systems with cryptojacking and …
-
Top 10 most exploited vulnerabilities list released by FBI, DHS CISA
When work-from-home became a sudden, urgent need in March, many organizations slapped together cloud-collaboration services such as …
-
WordPress and Apache Struts account for 55% of all weaponized vulnerabilities
A study that analyzed all the vulnerability disclosures between 2010 and 2019 found that around 55% of all the security bugs that have been …
-
Agile enterprise development doesn’t necessarily mean a free pass on governance
When the designers of Monopoly created a “Get Out of Jail Free” card for the iconic board game, the playing tool became synonymous with …
●●●