Bleeping Computer

Active Scans for Apache Tomcat Ghostcat Vulnerability Detected, Patch Now

Ongoing scans for Apache Tomcat servers unpatched against the Ghostcat vulnerability that allows potential attackers to take over servers have been detected over the weekend. As cyber threat ...
Bleeping Computer

Apache fixes actively exploited zero-day vulnerability, patch now

The Apache Software Foundation has released version 2.4.50 of the HTTP Web Server to address two vulnerabilities, one of which is an actively exploited path traversal and file disclosure flaw. The ...
ZDNet

Apache Cassandra users urged to upgrade after vulnerability disclosed

Users of Apache Cassandra are being urged to upgrade their versions after JFrog's Security Research team disclosed a remote code execution vulnerability that they said is "easy to exploit and has the ...
Threat Post

Attacks Heating Up Against Apache Struts 2 Vulnerability

Apache administrators are urged to immediately upgrade the Struts 2 web application framework to address a remote code execution flaw under public attack. Public attacks and scans looking for exposed ...
The Sun

Urgent Google Cloud warning about Apache Log4j vulnerability – here’s how to protect yourself from hackers NOW

GOOGLE is warning users over a vulnerability that can be exploited by hackers. Apache Log4j 2 utility is an open-source Apache framework that is used for logging requests. A vulnerability was reported ...
CSOonline

Lesson from Apache flaw: Test everything

Apache Server hole, unpatched until last week, shows importance of vulnerability testing for all software, not just code your developers write The Apache Software Foundation rolled out a patch last ...
Infosecurity-magazine.com

Apache Warns of Critical Vulnerability in Struts 2

Apache has warned customers of a critical remote code execution (RCE) vulnerability in its popular Struts 2 framework. Apache Struts 2 is an open-source web application framework for developing Java ...