Fortinet FortiCWP


Vendor Data Vendor Patch Exists
Community Data

Community Resources

Resource Link
source https://www.fortiguard.com/psirt/FG-IR-21-245

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Fix
NCSC-NL Fixed on 2021-12-10

Sources

Date Attribution Description
2021-12-28 13:46:31 NCSC-NL Updated vendorPatchExists. Updated community note. Updated community link source. Updated community note.
Expand Details

Fortinet FortiDeceptor


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
PSIRT Advisories FortiGuard https://www.fortiguard.com/psirt/FG-IR-21-245

Community Resources

Resource Link
source https://www.fortiguard.com/psirt/FG-IR-21-245

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link PSIRT Advisories FortiGuard.
Expand Details

Fortinet FortiEDR Agent


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
PSIRT Advisories FortiGuard https://www.fortiguard.com/psirt/FG-IR-21-245

Community Resources

Resource Link
source https://www.fortiguard.com/psirt/FG-IR-21-245

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link PSIRT Advisories FortiGuard.
Expand Details

Fortinet FortiEDR Cloud


Vendor Data
Community Data Vulnerable

Vendor Resources

Resource Link
PSIRT Advisories FortiGuard https://www.fortiguard.com/psirt/FG-IR-21-245

Community Resources

Resource Link
source https://www.fortiguard.com/psirt/FG-IR-21-245

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Vulnerable
NCSC-NL Declared not exploitable but mitigations added on 2021-12-10

Sources

Date Attribution Description
2021-12-28 13:46:31 NCSC-NL Updated communityVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityVulnerable. Updated vendor link PSIRT Advisories FortiGuard.
Expand Details

Fortinet FortiGate Cloud


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
PSIRT Advisories FortiGuard https://www.fortiguard.com/psirt/FG-IR-21-245

Community Resources

Resource Link
source https://www.fortiguard.com/psirt/FG-IR-21-245

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link PSIRT Advisories FortiGuard.
Expand Details

Fortinet FortiGSLB Cloud


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
PSIRT Advisories FortiGuard https://www.fortiguard.com/psirt/FG-IR-21-245

Community Resources

Resource Link
source https://www.fortiguard.com/psirt/FG-IR-21-245

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link PSIRT Advisories FortiGuard.
Expand Details

Fortinet FortiMail


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
PSIRT Advisories FortiGuard https://www.fortiguard.com/psirt/FG-IR-21-245

Community Resources

Resource Link
source https://www.fortiguard.com/psirt/FG-IR-21-245

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link PSIRT Advisories FortiGuard.
Expand Details

Fortinet FortiManager


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
PSIRT Advisories FortiGuard https://www.fortiguard.com/psirt/FG-IR-21-245

Community Resources

Resource Link
source https://www.fortiguard.com/psirt/FG-IR-21-245

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link PSIRT Advisories FortiGuard.
Expand Details

Fortinet FortiManager Cloud


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
PSIRT Advisories FortiGuard https://www.fortiguard.com/psirt/FG-IR-21-245

Community Resources

Resource Link
source https://www.fortiguard.com/psirt/FG-IR-21-245

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Not vuln

Sources

Date Attribution Description
2022-01-03 12:04:22 NCSC-NL Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link PSIRT Advisories FortiGuard.
Expand Details

Fortinet FortiMonitor


Vendor Data
Community Data Vulnerable

Community Resources

Resource Link
source https://www.fortiguard.com/psirt/FG-IR-21-245

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Vulnerable
NCSC-NL Mitigations for NCM & Elastiflow available

Sources

Date Attribution Description
2022-01-03 12:04:22 NCSC-NL Updated communityVulnerable. Updated community note. Updated community link source. Updated community note.
Expand Details

Fortinet FortiNAC


Vendor Data
Community Data Vulnerable

Vendor Resources

Resource Link
PSIRT Advisories FortiGuard https://www.fortiguard.com/psirt/FG-IR-21-245

Community Resources

Resource Link
source https://www.fortiguard.com/psirt/FG-IR-21-245

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Vulnerable

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityVulnerable. Updated vendor link PSIRT Advisories FortiGuard.
Expand Details

Fortinet FortiOS (includes FortiGate & FortiWiFi)


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
PSIRT Advisories FortiGuard https://www.fortiguard.com/psirt/FG-IR-21-245

Community Resources

Resource Link
source https://www.fortiguard.com/psirt/FG-IR-21-245

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link PSIRT Advisories FortiGuard.
Expand Details

Fortinet FortiPhish Cloud


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
PSIRT Advisories FortiGuard https://www.fortiguard.com/psirt/FG-IR-21-245

Community Resources

Resource Link
source https://www.fortiguard.com/psirt/FG-IR-21-245

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link PSIRT Advisories FortiGuard.
Expand Details

Fortinet FortiPolicy


Vendor Data
Community Data Vulnerable

Vendor Resources

Resource Link
PSIRT Advisories FortiGuard https://www.fortiguard.com/psirt/FG-IR-21-245

Community Resources

Resource Link
source https://www.fortiguard.com/psirt/FG-IR-21-245

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Vulnerable

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityVulnerable. Updated vendor link PSIRT Advisories FortiGuard.
Expand Details

Fortinet FortiPortal


Vendor Data
Community Data Vulnerable

Vendor Resources

Resource Link
PSIRT Advisories FortiGuard https://www.fortiguard.com/psirt/FG-IR-21-245

Community Resources

Resource Link
source https://www.fortiguard.com/psirt/FG-IR-21-245

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Vulnerable
NCSC-NL Fixed in version 6.0.8 and 5.3.8

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityVulnerable. Updated vendor link PSIRT Advisories FortiGuard.
Expand Details

Fortinet FortiRecorder


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
PSIRT Advisories FortiGuard https://www.fortiguard.com/psirt/FG-IR-21-245

Community Resources

Resource Link
source https://www.fortiguard.com/psirt/FG-IR-21-245

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link PSIRT Advisories FortiGuard.
Expand Details

Fortinet FortiSIEM


Vendor Data
Community Data Vulnerable

Vendor Resources

Resource Link
PSIRT Advisories FortiGuard https://www.fortiguard.com/psirt/FG-IR-21-245

Community Resources

Resource Link
source https://www.fortiguard.com/psirt/FG-IR-21-245

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Vulnerable
NCSC-NL “<a href=““https://community.fortinet.com/t5/FortiSIEM/Techincal-Tip-FortiSIEM-Log4j-Mitigating-CVE-2021-44228/ta-p/201008"" rel=““nofollow”">Mitigation steps”

Sources

Date Attribution Description
2022-01-03 12:04:22 NCSC-NL Updated communityVulnerable. Updated community note. Updated community link source. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityVulnerable. Updated vendor link PSIRT Advisories FortiGuard.
Expand Details

Fortinet FortiSOAR


Vendor Data
Community Data Vulnerable

Vendor Resources

Resource Link
PSIRT Advisories FortiGuard https://www.fortiguard.com/psirt/FG-IR-21-245

Community Resources

Resource Link
source https://www.fortiguard.com/psirt/FG-IR-21-245

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Vulnerable

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityVulnerable. Updated vendor link PSIRT Advisories FortiGuard.
Expand Details

Fortinet FortiSwicth Cloud in FortiLANCloud


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
PSIRT Advisories FortiGuard https://www.fortiguard.com/psirt/FG-IR-21-245

Community Resources

Resource Link
PSIRT Advisories FortiGuard https://www.fortiguard.com/psirt/FG-IR-21-245

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link PSIRT Advisories FortiGuard.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link PSIRT Advisories FortiGuard.
Expand Details

Fortinet FortiSwitch & FortiSwitchManager


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
PSIRT Advisories FortiGuard https://www.fortiguard.com/psirt/FG-IR-21-245

Community Resources

Resource Link
source https://www.fortiguard.com/psirt/FG-IR-21-245

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link PSIRT Advisories FortiGuard.
Expand Details

Fortinet FortiToken Cloud


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
PSIRT Advisories FortiGuard https://www.fortiguard.com/psirt/FG-IR-21-245

Community Resources

Resource Link
source https://www.fortiguard.com/psirt/FG-IR-21-245

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link PSIRT Advisories FortiGuard.
Expand Details

Fortinet FortiVoice


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
PSIRT Advisories FortiGuard https://www.fortiguard.com/psirt/FG-IR-21-245

Community Resources

Resource Link
source https://www.fortiguard.com/psirt/FG-IR-21-245

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link PSIRT Advisories FortiGuard.
Expand Details

Fortinet FortiWeb Cloud


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
PSIRT Advisories FortiGuard https://www.fortiguard.com/psirt/FG-IR-21-245

Community Resources

Resource Link
source https://www.fortiguard.com/psirt/FG-IR-21-245

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link PSIRT Advisories FortiGuard.
Expand Details

Fortinet ShieldX


Vendor Data
Community Data Vulnerable

Vendor Resources

Resource Link
PSIRT Advisories FortiGuard https://www.fortiguard.com/psirt/FG-IR-21-245

Community Resources

Resource Link
source https://www.fortiguard.com/psirt/FG-IR-21-245

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Vulnerable

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityVulnerable. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated communityVulnerable. Updated vendor link PSIRT Advisories FortiGuard.
Expand Details

Fujitsu AIS Connect


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu BeanConnect


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu BS2000 Hardware


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu BS2000 Software


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu BX400


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu BX900 MMB


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu eLux RP on FUTRO


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu ETERNUS AB/HB


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu ETERNUS CS800


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu ETERNUS CS8000


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2022-01-03 12:04:22 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu ETERNUS DX/AF


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu ETERNUS JX


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu ETERNUS LT140/260


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu ETERNUS LT20/40/60


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu ETERNUS SF


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu ETERNUS SF MA


Vendor Data Vendor Investigating
Community Data

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Investigation ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2022-01-03 12:04:22 NCSC-NL Updated vendorInvestigating. Updated community note. Updated community link source.
Expand Details

Fujitsu FlexFrame


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu INTELLIEGDLE A/G


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu iRMC on PRIMERGY:


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu ISM for PRIMERGY, PQ


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu NECoP


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu openFT


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu openSEAS


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu openUTM


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu openUTM (WebAdm.)


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu PRIMEFLEX for MS S2D


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu PTC Axeda (AIS Con.)


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu SBAX2


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu SBAX3


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu SecDocs


Vendor Data
Community Data Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Workaround ; CVE-2021-45046: Workaround ; CVE-2021-45105: Workaround

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu ServerView IM


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu ServerView OM


Vendor Data
Community Data Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Workaround ; CVE-2021-45046: Workaround ; CVE-2021-45105: Workaround

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated communityVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu ServerView OM/UM


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2022-01-03 12:04:22 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu ServerView RAID


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu ServerView Rem. Con.


Vendor Data Vendor Investigating
Community Data

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Investigation ; CVE-2021-44228: Investigation ; CVE-2021-45046: Investigation ; CVE-2021-45105: Investigation

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated vendorInvestigating. Updated community note. Updated community link source.
Expand Details

Fujitsu ServerView VIOM


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu SOA Pro. Mgmt. Service


Vendor Data Vendor Investigating
Community Data

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Investigation ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated vendorInvestigating. Updated community note. Updated community link source.
Expand Details

Fujitsu SOA SysRollout Service


Vendor Data Vendor Investigating
Community Data

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Investigation ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated vendorInvestigating. Updated community note. Updated community link source.
Expand Details

Fujitsu SVS Servicesfor ISM


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu SVS UME +LinuxLife


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu SVS VMware Op.Mgr


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu SVS VMware vCenter


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

Fujitsu WebTransactions


Vendor Data
Community Data Not Vulnerable

Community Resources

Resource Link
source https://support.ts.fujitsu.com/ProductSecurity/content/Fujitsu-PSIRT-PSS-IS-2021-121000-Security-Notice-SF.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Not vuln ; CVE-2021-45046: Not vuln ; CVE-2021-45105: Not vuln

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityNotVulnerable. Updated community note. Updated community link source.
Expand Details

FusionAuth FusionAuth


Vendor Data
Community Data Not Vulnerable

Vendor Resources

Resource Link
log4j CVE: How it affects FusionAuth (TLDR: It doesn’t) - FusionAuth https://fusionauth.io/blog/2021/12/10/log4j-fusionauth/

Sources

Date Attribution Description
2021-12-30 21:31:50 CISAGov Updated communityNotVulnerable. Updated vendor link log4j CVE: How it affects FusionAuth (TLDR: It doesn’t) - FusionAuth.
Expand Details

GE Digital (Multiple Products)


Vendor Data
Community Data

Vendor Resources

Resource Link
GE Digital Advisory Link(login required) https://digitalsupport.ge.com/communities/en_US/Alert/GE-Security-Advisories

Community Resources

Resource Link
GE Digital Advisory Link(login required) https://digitalsupport.ge.com/communities/en_US/Alert/GE-Security-Advisories

Community Notes

Source Note
NCSC-NL This advisory is available to customers only and has not been reviewed by CISA.
CISAGov This advisory is available to customers only and has not been reviewed by CISA.
CISAGov Last Update: 12/22/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated community link GE Digital Advisory Link(login required). Updated community note.
2021-12-30 21:31:50 CISAGov Updated vendor link GE Digital Advisory Link(login required). Updated community note. Updated community note.
Expand Details

GE Digital Grid (Multiple Products)


Vendor Data
Community Data

Vendor Resources

Resource Link
GE Digital Grid Advisory Link(login required) https://digitalenergy.service-now.com/csm?id=kb_category&kb_category=b8bc715b879c89103f22a93e0ebb3585

Community Resources

Resource Link
GE Digital Grid Advisory Link(login required) https://digitalenergy.service-now.com/csm?id=kb_category&kb_category=b8bc715b879c89103f22a93e0ebb3585

Community Notes

Source Note
NCSC-NL This advisory is available to customers only and has not been reviewed by CISA.
CISAGov This advisory is available to customers only and has not been reviewed by CISA.
CISAGov Last Update: 2021-12-22

Sources

Date Attribution Description
2022-01-03 12:08:44 NCSC-NL Updated community link GE Digital Grid Advisory Link(login required). Updated community note.
2021-12-30 21:31:50 CISAGov Updated vendor link GE Digital Grid Advisory Link(login required). Updated community note. Updated community note.
Expand Details

GE Gas Power Asset Performance Management (APM)


Vendor Data
Community Data Vulnerable

Vendor Resources

Resource Link
GE Gas Power Advisory Link https://www.ge.com/content/dam/cyber_security/global/en_US/pdfs/2021-12-21_Log4J_Vulnerability-GE_Gas_Power_Holding_Statement.pdf

Community Resources

Resource Link
GE Gas Power Advisory Link https://www.ge.com/content/dam/cyber_security/global/en_US/pdfs/2021-12-21_Log4J_Vulnerability-GE_Gas_Power_Holding_Statement.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Vulnerable
NCSC-NL GE verifying workaround.
CISAGov GE verifying workaround.
CISAGov Last Update: 2021-12-22

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityVulnerable. Updated community note. Updated community link GE Gas Power Advisory Link. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityVulnerable. Updated vendor link GE Gas Power Advisory Link. Updated community note. Updated community note.
Expand Details

GE Gas Power Baseline Security Center (BSC)


Vendor Data
Community Data Vulnerable

Vendor Resources

Resource Link
GE Gas Power Advisory Link https://www.ge.com/content/dam/cyber_security/global/en_US/pdfs/2021-12-21_Log4J_Vulnerability-GE_Gas_Power_Holding_Statement.pdf

Community Resources

Resource Link
GE Gas Power Advisory Link https://www.ge.com/content/dam/cyber_security/global/en_US/pdfs/2021-12-21_Log4J_Vulnerability-GE_Gas_Power_Holding_Statement.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Vulnerable
NCSC-NL Vulnerability to be fixed by vendor provided workaround. No user actions necessary. Contact GE for details.
CISAGov Vulnerability to be fixed by vendor provided workaround. No user actions necessary. Contact GE for details.
CISAGov Last Update: 2021-12-22

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated communityVulnerable. Updated community note. Updated community link GE Gas Power Advisory Link. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityVulnerable. Updated vendor link GE Gas Power Advisory Link. Updated community note. Updated community note.
Expand Details

GE Gas Power Baseline Security Center (BSC) 2.0


Vendor Data
Community Data Vulnerable

Vendor Resources

Resource Link
GE Gas Power Advisory Link https://www.ge.com/content/dam/cyber_security/global/en_US/pdfs/2021-12-21_Log4J_Vulnerability-GE_Gas_Power_Holding_Statement.pdf

Community Resources

Resource Link
GE Gas Power Advisory Link https://www.ge.com/content/dam/cyber_security/global/en_US/pdfs/2021-12-21_Log4J_Vulnerability-GE_Gas_Power_Holding_Statement.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Vulnerable
NCSC-NL Vulnerability to be fixed by vendor provided workaround. No user actions necessary. Contact GE for details
CISAGov Vulnerability to be fixed by vendor provided workaround. No user actions necessary. Contact GE for details
CISAGov Last Update: 2021-12-22

Sources

Date Attribution Description
2022-01-03 12:08:44 NCSC-NL Updated communityVulnerable. Updated community note. Updated community link GE Gas Power Advisory Link. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityVulnerable. Updated vendor link GE Gas Power Advisory Link. Updated community note. Updated community note.
Expand Details

GE Gas Power Control Server


Vendor Data
Community Data Vulnerable

Vendor Resources

Resource Link
GE Gas Power Advisory Link https://www.ge.com/content/dam/cyber_security/global/en_US/pdfs/2021-12-21_Log4J_Vulnerability-GE_Gas_Power_Holding_Statement.pdf

Community Resources

Resource Link
GE Gas Power Advisory Link https://www.ge.com/content/dam/cyber_security/global/en_US/pdfs/2021-12-21_Log4J_Vulnerability-GE_Gas_Power_Holding_Statement.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Vulnerable
NCSC-NL The Control Server is Affected via vCenter. There is a fix for vCenter. Please see below. GE verifying the vCenter fix as proposed by the vendor.
CISAGov The Control Server is Affected via vCenter. There is a fix for vCenter. Please see below. GE verifying the vCenter fix as proposed by the vendor.
CISAGov Last Update: 12/22/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated communityVulnerable. Updated community note. Updated community link GE Gas Power Advisory Link. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityVulnerable. Updated vendor link GE Gas Power Advisory Link. Updated community note. Updated community note.
Expand Details

GE Gas Power Tag Mapping Service


Vendor Data Vendor Patch Exists
Community Data Vulnerable

Vendor Resources

Resource Link
GE Gas Power Advisory Link https://www.ge.com/content/dam/cyber_security/global/en_US/pdfs/2021-12-21_Log4J_Vulnerability-GE_Gas_Power_Holding_Statement.pdf

Community Resources

Resource Link
GE Gas Power Advisory Link https://www.ge.com/content/dam/cyber_security/global/en_US/pdfs/2021-12-21_Log4J_Vulnerability-GE_Gas_Power_Holding_Statement.pdf

Community Notes

Source Note
NCSC-NL CVE-2021-4104: Not vuln ; CVE-2021-44228: Fix
NCSC-NL Vulnerability fixed. No user actions necessary. Updated to log4j 2.16
CISAGov Vulnerability fixed. No user actions necessary. Updated to log4j 2.16
CISAGov Last Update: 12/22/2021

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated vendorPatchExists. Updated community note. Updated community link GE Gas Power Advisory Link. Updated community note.
2021-12-30 21:31:50 CISAGov Updated communityVulnerable. Updated vendorPatchExists. Updated vendor link GE Gas Power Advisory Link. Updated community note. Updated community note.
Expand Details

GE Healthcare (Multiple Products)


Vendor Data
Community Data

Vendor Resources

Resource Link
GE Healthcare Advisory Link https://securityupdate.gehealthcare.com

Community Resources

Resource Link
GE Healthcare Advisory Link https://securityupdate.gehealthcare.com

Community Notes

Source Note
NCSC-NL This advisory is not available at the time of this review, due to maintence on the GE Healthcare website.
CISAGov This advisory is not available at the time of this review, due to maintence on the GE Healthcare website.
CISAGov Last Update: 2021-12-22

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated community link GE Healthcare Advisory Link. Updated community note.
2021-12-30 21:31:50 CISAGov Updated vendor link GE Healthcare Advisory Link. Updated community note. Updated community note.
Expand Details

Gearset (Multiple Products)


Vendor Data
Community Data

Vendor Resources

Resource Link
Gearset Statement https://docs.gearset.com/en/articles/5806813-gearset-log4j-statement-dec-2021

Community Resources

Resource Link
Gearset Statement https://docs.gearset.com/en/articles/5806813-gearset-log4j-statement-dec-2021

Sources

Date Attribution Description
2022-01-03 12:08:44 NCSC-NL Updated community link Gearset Statement.
2021-12-30 21:31:50 CISAGov Updated vendor link Gearset Statement.
Expand Details

Genesys (Multiple Products)


Vendor Data Vendor Investigating
Community Data

Vendor Resources

Resource Link
Genesys Statement https://www.genesys.com/blog/post/genesys-update-on-the-apache-log4j-vulnerability

Community Resources

Resource Link
source https://www.genesys.com/blog/post/genesys-update-on-the-apache-log4j-vulnerability

Community Notes

Source Note
NCSC-NL CVE-2021-44228: Investigation

Sources

Date Attribution Description
2021-12-31 9:06:53 NCSC-NL Updated vendorInvestigating. Updated community note. Updated community link source.
2021-12-30 21:31:50 CISAGov Updated vendor link Genesys Statement.
Expand Details

GeoServer (Multiple Products)


Vendor Data
Community Data

Vendor Resources

Resource Link
GeoServer Announcement http://geoserver.org/announcements/2021/12/13/logj4-rce-statement.html

Community Resources

Resource Link
GeoServer Announcement http://geoserver.org/announcements/2021/12/13/logj4-rce-statement.html

Sources

Date Attribution Description
2021-12-27 15:29:04 NCSC-NL Updated community link GeoServer Announcement.
2021-12-30 21:31:50 CISAGov Updated vendor link GeoServer Announcement.
Expand Details