Schwachstellen-InsightsFTC highlights the importance of securing Log4j and software supply chain7. Januar 2022
Schwachstellen-InsightsNew Log4j 2.17.1 fixes CVE-2021-44832 remote code execution (but it’s not as bad as it sounds)29. Dezember 2021
Open-Source-SicherheitIt takes a community: Responding to open source criticism post-Log4Shell24. Dezember 2021
Schwachstellen-InsightsSnyk makes it easier to fix Log4Shell with extended free scans21. Dezember 2021
Schwachstellen-InsightsLog4j 2.16 High Severity Vulnerability (CVE-2021-45105) Discovered18. Dezember 2021
Schwachstellen-InsightsFind Log4Shell vulnerabilities in your unmanaged and shaded jars with the Snyk CLI18. Dezember 2021
Schwachstellen-InsightsLog4j 2.15 vulnerability CVE-2021-45046 upgraded to a critical severity arbitrary code execution17. Dezember 2021
Schwachstellen-InsightsLog4Shell in a nutshell (for non-developers & non-Java developers)15. Dezember 2021
Schwachstellen-InsightsThe Log4j vulnerability and its impact on software supply chain security13. Dezember 2021
Schwachstellen-InsightsLog4j vulnerability explained: Prevent Log4Shell RCE by updating to version 2.17.110. Dezember 2021
Open-Source-SicherheitSnyk Open Source adds beta C/C++ security scanning for unmanaged OSS8. Dezember 2021
Open-Source-SicherheitSecuring your open source dependencies with the Snyk Visual Studio Code extension23. November 2021
Open-Source-SicherheitAnnouncing automated fixes for vulnerabilities in .NET dependencies17. November 2021
Schwachstellen-InsightsExploring extensions of dependency confusion attacks via npm package aliasing4. November 2021