Spring4Shell – By the numbers

By Ilkka Turunen on April 04, 2022 component vulnerability

6 minute read time

Spring4Shell, a new 0-day RCE, is not quite as bad as Log4shell but has a wide blast radius. We dive into the numbers on how the world is fixing the issue.

Are we doing enough to prevent future “bleeding hearts”?

By Wayne Jackson on April 10, 2014 Sonatype Says

4 minute read time

As the HeartBleed bug wreaked havoc on the internet over the past few days, we at Sonatype began thinking about the lessons learned from this recent scare.