AppSec Observer: vulnerabilities (2)

Contrast's application security blog provides the latest trends and tips in DevSecOps through instrumentation and security observability.

Subscribe Now

Topics

4 June 2022

Contrast Protect eliminates another zero-day headache

On June 2nd, Atlassian released a security advisory about another remote code execution vulnerability (CVE-2022-26134)..

29 December 2021

Log4J 2.17.1 - Lower Risk, Patch When You Can

The season of Log4J vulnerabilities continues with a new Log4J 2.17.1 released on December 28, however the risk is..

22 December 2021

Expression language and deserialization attacks on the rise in lead-up to Log4j vulnerability

It’s been a couple of weeks since the first public disclosure of the Log4j vulnerability. A lot has happened - perhaps..

21 December 2021

Three Reasons Why Contrast SCA Is Best Suited for Log4Shell Rapid Response

With Log4j being such a ubiquitous library embedded in tens of millions applications across the Java ecosystem, it’s..

18 December 2021

[Upgrade to 2.17] Updated Guidance on Addressing Log4J CVEs

The Apache Software Foundation provided another update to log4j (version 2.17.0) to address a new CVE-2021-45105 on..

16 December 2021

Log4Shell By The Numbers

We monitor many thousands of applications with Contrast Assess (IAST), Contrast SCA, and Contrast Protect (RASP) so we..

16 December 2021

Updated Guidance on Addressing Log4J CVEs

The information below is no longer current against the evolving security landscape. See [updated guidance] again on..

16 December 2021

Instantly Inoculate Your Servers Against Log4J With New Open Source Tool

Contrast is releasing SafeLog4j, a free and open-source, general purpose tool that can detect/verify vulnerable log4j..

14 December 2021

WAF, RASP and Log4Shell

Log4Shell has done an excellent job of making the case for Runtime Application Self-Protection (RASP). Here’s the quick..

Prev 1 2 3 4 5 Next

BY USE CASE

BY DEPARTMENT

BY INDUSTRY

GITHUB ACTIONS BLOG SERIES, PART 1: PIPELINE NATIVE CODE ANALYSIS

Contrast Security recognized as a Visionary by Gartner in Application Security Testing.

Contrast Incident Response Hub

AppSec Observer: vulnerabilities (2)

Contrast Protect eliminates another zero-day headache

Log4J 2.17.1 - Lower Risk, Patch When You Can

Expression language and deserialization attacks on the rise in lead-up to Log4j vulnerability

Three Reasons Why Contrast SCA Is Best Suited for Log4Shell Rapid Response

[Upgrade to 2.17] Updated Guidance on Addressing Log4J CVEs

Log4Shell By The Numbers

Updated Guidance on Addressing Log4J CVEs

Instantly Inoculate Your Servers Against Log4J With New Open Source Tool

WAF, RASP and Log4Shell

BY USE CASE

BY DEPARTMENT

BY INDUSTRY

GITHUB ACTIONS BLOG SERIES, PART 1: PIPELINE NATIVE CODE ANALYSIS

Contrast Security recognized as a Visionary by Gartner in Application Security Testing.

Contrast Incident Response Hub

AppSec Observer: vulnerabilities (2)

Contrast Protect eliminates another zero-day headache

Log4J 2.17.1 - Lower Risk, Patch When You Can

Expression language and deserialization attacks on the rise in lead-up to Log4j vulnerability

Three Reasons Why Contrast SCA Is Best Suited for Log4Shell Rapid Response

[Upgrade to 2.17] Updated Guidance on Addressing Log4J CVEs

Log4Shell By The Numbers

Updated Guidance on Addressing Log4J CVEs

Instantly Inoculate Your Servers Against Log4J With New Open Source Tool

WAF, RASP and Log4Shell

Loving our content? Subscribe now!