Source |
Security Affairs |
Identifiant |
6548347 |
Date de publication |
2022-08-26 17:19:35 (vue: 2022-08-26 18:05:54) |
Titre |
Iran-linked Mercury APT exploited Log4Shell in SysAid Apps for initial access |
Texte |
>An Iran-linked Mercury APT group exploited the Log4Shell vulnerability in SysAid applications for initial access to the targeted organizations. The Log4Shell flaw (CVE-2021-44228) made the headlines in December after Chinese security researcher p0rz9 publicly disclosed a Proof-of-concept exploit for the critical remote code execution zero-day vulnerability (aka Log4Shell) that affects the Apache Log4j Java-based logging library. The flaw can be exploited […]
|
Envoyé |
Oui |
Condensat |
2021 44228 >an access affects after aka log4shell apache log4j java applications apps apt based can chinese code concept critical cve day december disclosed execution exploit exploited flaw group headlines initial iran library linked log4shell logging mercury organizations p0rz9 proof publicly remote researcher security sysaid targeted the log4shell vulnerability vulnerability zero made |
Tags |
Vulnerability
|
Stories |
|
Notes |
|
Move |
|