Log4Shell (CVE-2021-44228) is a remote code execution vulnerability affecting some versions of Log4J, particularly Apache Log4J 2 (versions 2.14.1 and earlier). This flaw stems from how these versions handle Java Naming and Directory Interface (JNDI) lookups. It allows hackers to execute malicious code remotely by tricking this older JNDI functionality into executing a download command from a server containing malware.
Windows Remote Desktop Gateway UAF Vulnerability Allows Remote Code Execution
Microsoft disclosed a critical vulnerability (CVE-2025-21297) in Remote Desktop Gateway that enables remote code execution due to a use-after-free bug. Discovered by VictorV, it affects
