Skip to Content

Tag: RCE

Q3 2022 Vulnerability Roundup

The curtain has fallen on the third quarter (Q3) of 2022, and it’s time to report the trends and highlights gleaned from Digital Shadows (now ReliaQuest)’ vulnerability intelligence. Q3 was characterized by dozens of zero-day vulnerabilities, including the continued exploitation of the high-profile Follina vulnerability (CVE-2022-30190) that debuted in the second quarter of 2022. For […]

Log4j: What’s Happened Since

Last Friday, we published a blog on the latest significant vulnerability, CVE-2021-44228, which involves a flaw in the Log4j program that causes arbitrary code execution. In case you missed it, the fun part here is that attackers could introduce malicious code in many different ways. As Rob put it on our recent podcast, the coder’s […]

The Log4j Zero-Day: What We Know So Far

There’s nothing in the cyber threat intelligence world like having a severe remote code execution (RCE) zero-day drop on a Friday afternoon. In light of this news, here’s a quick rundown of what we know about this: On 10 December 2021, reports began emerging of a new zero-day vulnerability found in the popular Log4j Java […]