Update 07/01/22 – Added credit to researcher @pyn3rd for similar independent previous findings in Acknowledgements section A short preamble Very recently, the JFrog security research team has disclosed an issue in the H2 database console which was issued a critical CVE – CVE-2021-42392. This issue has the same root cause as the infamous Log4Shell vulnerability … Continue reading The JNDI Strikes Back – Unauthenticated RCE in H2 Database Console
Copy and paste this URL into your WordPress site to embed
Copy and paste this code into your site to embed
Thank You!
Your submission has been recieved.
We will contact you soon!
