The number of Java SE patches in the quarterly Oracle Critical Patch Update (CPU) for January 2020 drops to 12 from the 20 included in October 2019’s CPU. But, 1/3rd…
Read More
Apache Log4j CVE-2019-17571 RCE vulnerability can be remotely exploited by attackers Waratek customers are protected by default rule The Apache Foundation has announced CVE-2019-17571, a Remote Code Execution (RCE) flaw…
In a new research paper that was presented in this year’s Def Con, Veracode Security Researcher Michael Stepankin, released information about a new vulnerability that affects Apache Solr. The vulnerability…
[Update June 18, 2019] Oracle have issued a patch for this new vulnerability CVE-2019-2729 Please note that this Oracle fix has the same limitations as their previous fix. Oracle’s patch...
Read MoreGuidance on Java Deserialization Vulnerability in WebSphere Application Server ND (CVE-2019-4279) Security Bulletin IBM issued a security bulletin on Wednesday 15th May that advised of a critical vulnerability affecting IBM...
Read More