Researchers Keep a Wary Eye on Critical New Vulnerability in Apache Commons Text

There’s nothing yet to suggest CVE-2022-42889 is the next Log4j. But proof-of-concept code is available, and interest appears to be ticking up.

You can read the full article here.