Explaining Spring4Shell: The Internet security disaster that wasn't - Ars Technica

Vulnerability in the Spring Java Framework is important, but it's no Log4Shell.

4 with 4 posters participating Hype and hyperbole were on full display this week as the security world reacted to reports of yet another Log4Shell. The vulnerability came to light in December and is… [+5197 chars]

full article...