Researchers have discovered a bug associated with the Log4J library’s vulnerability, which in turn opens the door for the enemy to decrypt remote systems into vulnerable systems. However, this error does not pose a risk similar to that previously identified in Log4Shell, they said.
JFrog security found the error and rated it as important in the context of the H2 Java data console, a popular open source website, according to a Thursday blog post by researchers.
H2 is popular with developers for its lightweight memory solution – which prevents the need for data to be stored on disk – and is used on web platforms such as Spring Boot and IoT platforms such as ThingWorks.
Read More: threatpost
For more such updates follow us on Google News ITsecuritywire News