Rusty Deaton

1. Known Issues & Vulnerabilities
2. Vulnerabilities

Why did we take our current approach to the December 2025 Apache Log4J vulnerability? CVE-2025-68161 details a vulnerability within Apache Log4J2, a popular logging library.  The vulnerability is, ...

• Edited March 11, 2026 00:11
• 0 followers
• 0 comments
• 1 vote

1. Known Issues & Vulnerabilities
2. Vulnerabilities

Why did we take our current approach to CVE-2024-38820? CVE-2024-38820 details a path traversal vulnerability in Spring.  Per Spring’s advisory on the matter(https://spring.io/security/cve-2024-388...

• Edited December 12, 2024 16:11
• 1 follower
• 0 comments
• 0 votes

1. Known Issues & Vulnerabilities
2. Vulnerabilities

Why did we take our current approach to CVE-2024-38819? CVE-2024-38819 details a path traversal vulnerability in Spring.  Per Spring’s advisory on the matter(https://spring.io/security/cve-2024-388...

• Edited December 11, 2024 23:53
• 1 follower
• 0 comments
• 0 votes

1. Known Issues & Vulnerabilities
2. Vulnerabilities

CVE-2024-38821 FAQ Why did we take our current approach to CVE-2024-38821? CVE-2024-38821 details an authorization bypass of static resources in WebFlux applications.  Per Spring’s advisory on the ...

• Edited December 05, 2024 18:15
• 1 follower
• 0 comments
• 1 vote