The vulnerability's discovery is credited to researchers at LunaSec and Alibaba Cloud Security's Chen Zhaojun. It leverages a widely used Apache-based logging utility, log4j, to log server data with malicious payloads that trigger a series of actions to inject a secondary payload. The secondary payload allows remote execution of code...
from TechSpot
Read The Rest:techspot...
No comments:
Post a Comment