WASHINGTON—A major cybersecurity bug detected last year in a widely used piece of software is an “endemic vulnerability” that could persist for more than a decade as an avenue for hackers to infiltrate computer networks, a U.S. government review has concluded.
The flaw—identified within versions of a common bit of code known as Log4j—has so far been less significant than initially feared, according to a report summarizing the review’s findings released Thursday.
