General announcements to the community from the Sonatype Support team.
- ★ CVE-2021-44228 log4j Log4Shell Vulnerability
- ★ Sonatype Data Research supplies reserved CVE CVSS scores
- IQ vulnerability information contains the Root Cause
- codehaus.org Repositories Should Be Removed From Your Nexus Instance
- Commons-collections unintended execution in deserialization
- Spring-core unintended code execution in deserialization
- OpenSSL Heartbleed bug and Sonatype