CVE-2022-23307 - Understanding Deserialization Vulnerabilities in Apache Chainsaw and Log4j
If you work with logs in Java, you've probably come across tools like Apache Chainsaw or libraries like Log4j. But what happens when
CVE-2022-22826 - Integer Overflow in Expat’s nextScaffoldPart Function—How Attackers Could Exploit libexpat via XML Parsing
Libexpat is one of the most widely used XML parsing libraries, baked into software and systems across the internet. When a vulnerability is found in
CVE-2021-44228 - How Attackers Exploited Apache Log4j2’s JNDI Flaw – What You Need to Know
In December 2021, a shocking vulnerability rocked the internet: CVE-2021-44228, also called Log4Shell. Found in the super-popular logging tool Apache Log4j2, this bug’s impact
CVE-2021-41773 - Dangerous Path Traversal in Apache HTTP Server 2.4.49—Exploit, Impact, and Prevention
Apache is one of the most popular web servers in the world, powering a massive amount of the internet. In 2021, a critical vulnerability named
CVE-2021-39275 - Buffer Overflow in Apache HTTP Server’s `ap_escape_quotes()` Function Explained
Apache HTTP Server is one of the most widely used web servers in the world. That’s why every bug in it can be a
Episode
00:00:00
00:00:00