Spring4Shell and Patches for VMware and Microsoft

This month we take a deep dive into the most recent Java related vulnerability, and ask what the situation was with this, how it got confused with another vulnerability, and how significant it is to the wider threat landscape - or was it just riding on the memory of Log4J?We also look at the April patches from Microsoft, and two lots of fixes from VMware.Spring4Shell FAQ: Spring Framework Remote Code Execution Vulnerability Microsoft’s April 2022 Patch Tuesday Addresses 117 CVEsVMware vCenter Server Sensitive Information Disclosure Vulnerability VMware Patches Multiple Vulnerabilities in Workspace ONE, Identity and Lifecycle Manager and vRealize Threat Landscape Retrospective 2021 Download Follow along for more from Tenable Research:Subscribe to the blogFollow Tenable’s Zero Day team on Medium

Om Podcasten

Join members of Tenable Research for a discussion about the latest vulnerabilities, exploits and cyber threats. Analysis, insights and guidance for information security and IT professionals who want to stay in the know.