NIST assigned Spring4Shell a score of 9.8, most likely out of concern of a similar blast radius to Log4Shell, which was trivial to exploit and very common.
Read more about One month in: CyCognito looks at Spring4Shell
CyCognito Blog
Posts tagged ‘Log4Shell’
Search the Blog
A timeline of how we responded to Log4j and a technical walk-through of our Active Detection Module and other steps we’ve taken .
Read more about Two CyCognito Log4j2 Testing Modules