New Local Attack Vector Expands the Attack Surface of Log4j Vulnerability — The Hacker News

Cybersecurity researchers have discovered an entirely new attack vector that enables adversaries to exploit the Log4Shell vulnerability on servers locally by using a JavaScript WebSocket connection.
“This newly-discovered attack vector means that anyone with a vulnerable Log4j version on their…

Source: thehackernews.com – Read more